last executing test programs: 3m0.573251964s ago: executing program 3 (id=9384): openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x181000, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 3m0.546384726s ago: executing program 3 (id=9386): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a6c000000060a0b0400000000000000000200000038000480340001800900010068617368000000002400028008000240000000020800074000000001080004400000000008000640000000070900010073797a30000000000900020073797a32"], 0x94}, 0x1, 0x0, 0x0, 0x8010}, 0x4008800) 3m0.517952187s ago: executing program 3 (id=9388): r0 = syz_io_uring_setup(0x4e0, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x400252}, &(0x7f0000000640)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) io_uring_enter(r0, 0x627, 0x4c1, 0x4b, 0x0, 0xfffffffffffffef2) 3m0.46518739s ago: executing program 3 (id=9390): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000100)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}, {@delalloc}, {@grpquota}, {@nouid32}, {@nouid32}, {@data_writeback}]}, 0x2, 0x55d, &(0x7f0000000e80)="$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") mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0) 3m0.29292725s ago: executing program 3 (id=9393): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) statx(r0, &(0x7f0000000200)='./file1\x00', 0x0, 0x40, 0x0) 2m57.883210571s ago: executing program 3 (id=9488): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000280)={0x11, 0x4, r1, 0x1, 0x1, 0x6, @remote}, 0x14) 2m57.873859082s ago: executing program 32 (id=9488): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000280)={0x11, 0x4, r1, 0x1, 0x1, 0x6, @remote}, 0x14) 2m26.686554935s ago: executing program 4 (id=10675): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006) 2m26.42953291s ago: executing program 4 (id=10685): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x100}, 0xe) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, 0x0) 2m26.381341013s ago: executing program 4 (id=10687): r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000006c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000010140)={0x28, r0, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}]}]}, 0x28}}, 0x0) 2m26.307906226s ago: executing program 4 (id=10692): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x9e, &(0x7f00000000c0)={[{@orlov}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@usrquota}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x450, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLYgv2xF/MEPtYrGxh8tLagcvGg04WJiogc81lIIslBDayKESDUGj4a/QD2a+Bd40otRTxqvejcmxHARPZgxszsDS7tbd7tbtrCfTzLtezNv973vzLzdN/N2AhhYY/mfJGJ7RPwaESP17M0Fxur/rl29MPv31QuzSWTZG38mtXJ/Xb0wWxYtX7etyIynEenHSextUu/CufOnZqrVubNFfnLx9LuTC+fOP3vy9MyJuRNzZ6YPHz50cOqF56ef60mcO/K27vlgft/uI29dfm326OW3f/gqb+/2YntjHHWjXdc5FmM378sGT3T97hvLjoZ0MtTHhtCRSkTkh2u41v9HohI3Dt5IvPpRXxsHrKssy7LNK9ZWysRSBtzBkuh3C4D+KL/o8+vfcrmFw4++u/JS/QIoj/tasdS3DEValBledn3bS2MRcXTpn8/yJZrehwAA6K1v8vHPM83Gf2nc31Du7mJuaDQi7omInRFxb0Tsioj7ImplH4iIBzusf2xZfuX45+ctawqsTfn478Vibuvm8V85+ovRSpHbUYt/ODl+sjp3oNgn4zG8Oc9PrVLHt6/88mmrbY3jv3zJ6y/HgkU7/hhadoPu2MziTDcxN7ryYcSeoWbxJ9fnrvL/uyNizxreP99nJ5/6cl+r7f8f/yp6MM+UfRHxZP34L8Wy+EvJ6vOTk3dFde7AZHlWrPTjT5deb1V/V/H3QH78tzY9/6/HP5o0ztcudF7Hpd8+aXlNs9bzf1PyZi29qVj3/szi4tmpiE3J0sr10zdeW+bL8nn84/ub9/+dEf9+Xrxub0TkJ/FDEfFwRDxStP3RiHgsIvavEv/3Lz/+ztrjX195/Mc6Ov6dJyqnvvu6Vf3tHf9DtdR4saadz792G9jNvgMAAIDbRVr7DXySTlxPp+nERP03/Ltia1qdX1h8+vj8e2eO1X8rPxrDaXmna6ThfuhUcW+4zE8vyx+s3TfOsizbUstPzM5X12tOHWjPthb9P/d7pd+tA9ZdR/NorZ5oA25LnteEwaX/w+DS/2Fw6f8wuJr1/4sR1/rQFOAW8/0Pg0v/h8Gl/8Pg0v9hIHXzXP9qiZ1H1uud77REZWM0o+NEpBuiGWtLpBujGfXE5ohot/DFuFUN6/cnEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQG/8FwAA//8Hl+jb") mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x0, 0x0) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0xee01, &(0x7f0000000000)='./file0\x00') 2m25.826365775s ago: executing program 4 (id=10707): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x8, 0x0) sendfile(r0, r1, 0x0, 0x6) 2m24.907236859s ago: executing program 4 (id=10731): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000000)=0x1, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x6, 0x0, &(0x7f0000000080)) 2m24.89190703s ago: executing program 33 (id=10731): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000000)=0x1, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x6, 0x0, &(0x7f0000000080)) 1m10.81898383s ago: executing program 0 (id=13629): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000110b0008850000007000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x15, 0x0, &(0x7f0000000380)="b9aea252ff030703008cb89e08007b2601b1afb118", 0x0, 0xfe3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1m10.750103864s ago: executing program 0 (id=13642): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xffde}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0) 1m10.684442368s ago: executing program 0 (id=13634): mknod(&(0x7f0000000100)='./file0\x00', 0xc000, 0x3) open$dir(&(0x7f0000000080)='./file0\x00', 0x153600, 0x0) perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x6, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xc}, 0x0, 0x1, 0x1, 0x9, 0x7, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 1m10.625209551s ago: executing program 0 (id=13639): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x6, 0x441e, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x9}, 0x4640, 0x10000, 0x8, 0x1, 0x8, 0x4, 0xb, 0x0, 0x0, 0x0, 0x12000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004a40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x20}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x40}]}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x7}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xf0}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) 1m10.538955496s ago: executing program 0 (id=13643): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mkdirat(r0, &(0x7f0000002040)='./file0\x00', 0x5) 1m10.46954947s ago: executing program 0 (id=13647): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) setreuid(0xffffffffffffffff, 0xee01) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000080)={'netdevsim0\x00', {0x2, 0x0, @remote}}) 55.409451861s ago: executing program 34 (id=13647): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) setreuid(0xffffffffffffffff, 0xee01) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000080)={'netdevsim0\x00', {0x2, 0x0, @remote}}) 53.627218595s ago: executing program 6 (id=14285): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={0xffffffffffffffff}, 0x13f, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r1, 0x8}}, 0x10) 53.490014563s ago: executing program 6 (id=14289): unshare(0x24060400) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000140)='\x00', 0x89901) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x126f3129, 0x10000, @value=r0}, 0x28) 53.439626575s ago: executing program 6 (id=14293): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f00000000c0), 0x4) setsockopt$MRT_DEL_MFC(r0, 0x0, 0xcd, 0x0, 0x0) 53.279529785s ago: executing program 6 (id=14299): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000540)={[{@errors_remount}, {@delalloc}, {@bh}, {@dioread_lock}, {@nouid32}, {@data_writeback}]}, 0x2, 0x550, &(0x7f0000000900)="$eJzs3VFoJHcZAPBvJtm73F1qtupDLViLrdxVvc2l8drgQ1UQfSqoFZ+EMyabELLJHsmmvYTDpvgqKCJa8EWffBF88U2QvvguQqG+i4oiNacPCm1HZnf2ctnsJjnczWjy+8HczH9md7/v2yT//c/O3EwA59aTEXEtIsYi4pmImCrWp8UUu50pf9y9vbsL+ZRElr30dhJJsa77WheL+ZXiaRMR8ZUvRnwzORx3c3tndb7RqG8U7enWWvJOlu1cX1mbX64v19dnZ2eem3t+7ubcjaHUWY2IFz7/5x9+92dfeOHXn3zlD7f+eu1beVr/zrJXo6eOYeqUXmm/F13jEbEximAlGW9X2HGz5FwAADhaPt5/f0R8tD3+n4qx9mgOAAAAOEuyz0zGO0lEBgAAAJxZaURMRpLWivN9J4szVq9ExAfjctpobrY+sdTcWl/Mt0VUo5IurTTqN2Kife5ANSpJ3p4pzrHttp/tac9GxKMR8YOpS+12baHZWCz7yw8AAAA4J6707P//cypNa7Vi427JyQEAAADDUy07AQAAAGDk7P8DAADA2VfN+tyh67B09JkAAAAAI/ClF1/Mp6x7/+vFl7e3VpsvX1+sb67W1rYWagvNjdu15WZzuX3NvrXjXq/RbN7+VKxv3Zlu1Tdb05vbO7fWmlvrrVsrB26BDQAAAJyiRz/yxu+TiNj99KX2lLtQbKtEZGMPPni8jAyBUXmoc3r+NLo8gNP34Of7pRLzAE6fIT2cX5WyEwBKd9x/ABp48s5vh58LAAAwGlc/NPj4/9tLpaYGjFhx/D850QVAgDNlrOwEgNJ0jv+9l3WUnQ1wmipHjQDsFMCZlw7n+P8xpxImOhQAACjZZHtK0lqxHzAZaVqrRTzSvi1gJVlaadRvRMT7IuKtqcrFvD3TfmZiNA8AAAAAAAAAAAAAAAAAAAAAAAAAJ5RlSWQAAADAmRaR/qV7Z66rU09P9n4/cCH511R7HhGv/PilH92Zb7U2ZvL1f7+/vvV6sf7ZMr7BAAAAAHp199O7+/EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMEz39u4u3MuyLNu7u3Cacf/2uYioFvGLqbNlPCba84moRMTlfyQx/sDzkogYG0L83dci4rF+8ZM8ragWWRyIfyEijYhLw4ofDxk/OvGvDCE+nGdv5P3PZ/v9/aXxZHve/+9vvJj+W4P7v/R+/zc2oP97ZNCLVg42H3/zF9MD478W8fh4//6nGz/JX69P/KdOWOM3vrqzM2hb9tOIq/36v+RgrOnW2u3pze2d6ytr88v15fr67OzMc3PPz92cuzG9tNKoF//2jfH9D//qvf3Wu4fqv3xE/9uuf8D7//QJ63/3zTt7H+gs9vxkohI/ybJrT/X/+T+Wzz5+OH73s+9jxedA3s7fw/T1r/WN/8TPf/dEMiC3vP7FAfVP9NR/saf+ayes/5kvf/uPJ3woAHAKNrd3VucbjfrG/91CWlQwkhBRLb/A/+mFdFTv/MMsJJFEvvDWgU3z5SfWWXi1+A2db8Rwf1d/U4zmR5l8CX0RAAAwWvuD/rz1vV/ubxl0xAAAAAAAAAAAAAAAAAAAAAAYtmMvAzZoUxoR+2u+/p0jrkbWG3O3nFIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI70nwAAAP//rRTUZw==") mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0) 52.719525008s ago: executing program 6 (id=14310): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @mcast1}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0) 49.479038617s ago: executing program 6 (id=14376): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x23}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xe, 0x0, &(0x7f0000000300)="0101000071a78326c799dbe888a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 49.43420392s ago: executing program 35 (id=14376): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x23}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xe, 0x0, &(0x7f0000000300)="0101000071a78326c799dbe888a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.809108684s ago: executing program 2 (id=15837): pipe2$9p(&(0x7f0000000240), 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x800000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 1.722998329s ago: executing program 2 (id=15841): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200088b, &(0x7f0000000040), 0x0, 0x56b, &(0x7f0000000680)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x7, 0x8, 0x8, 0x40}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000500), 0xce, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000340)={r0, &(0x7f00000006c0), 0x0}, 0x20) 1.468945734s ago: executing program 2 (id=15852): r0 = epoll_create1(0x0) epoll_wait(r0, &(0x7f0000000180)=[{}], 0x1, 0x2f55) r1 = syz_io_uring_setup(0x70fd, &(0x7f0000000080)={0x0, 0x617d, 0x10000, 0x0, 0x184}, &(0x7f0000000100), &(0x7f0000000140)) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x9000000d}) 1.374714879s ago: executing program 8 (id=15854): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfb6}, 0x94) 1.277004545s ago: executing program 8 (id=15857): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x15f) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={0x0, 0x1}, 0x8) 1.240914977s ago: executing program 2 (id=15859): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x80890a, &(0x7f0000000100)={[{@orlov}, {@nodioread_nolock}, {}, {@oldalloc}, {@nojournal_checksum}, {@min_batch_time={'min_batch_time', 0x3d, 0xc619}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}]}, 0x7, 0x7b5, &(0x7f0000000540)="$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") perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xeb, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x4000, 0x0, 0xfff, 0x2, 0x7, 0x0, 0x100, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x82) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x8, 0x40000cca8, 0x4010}) 1.208041809s ago: executing program 8 (id=15862): connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) 1.155151672s ago: executing program 8 (id=15863): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x2, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) io_getevents(0x0, 0x400, 0x0, 0x0, 0xffffffffffffffff) 1.0213461s ago: executing program 7 (id=15867): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'veth0_to_bond\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000ac0)=@newqdisc={0x34, 0x24, 0xf0b, 0x70bd30, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2, 0x9}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4c845}, 0x0) 970.222923ms ago: executing program 2 (id=15869): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a80)=@newtaction={0x1e0, 0x30, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [{0xec, 0x1, [@m_simple={0xe8, 0x18, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '\t\x00\x00\x00\x00'}]}, {0xad, 0x6, "c92acebef543cf5eac95ff99fdfe71226f0f8ca3945cf1e27303fef4d7edee9dc07b9c204234f1518f815a1e6f9900be0653c30ee7044fc49940d26166aca9768a60e2633236607ed8e41497a644f35e0d2494ec2432e189bde8a31ee3c25d98a9d5eabb59832b6b5d302ef8dbee798a364094b288f82acbcd5acc3d37148318dc5491c9505a46e3387d31e31c2a8f31a806aff980e9556c76256efb4a5cd9c0b1d305d220c3ba3063"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1}}}}]}, {0xe0, 0x1, [@m_simple={0x88, 0x2, 0x0, 0x0, {{0xb}, {0x4}, {0x5a, 0x6, "3ac47d8f66b9ada606aa60a7fc99c95c9fbb58402dd443e92602f7994c557e40094500a136bb53cc323abe8e9a032feb3b1811b3f9149f6f05ff436ae121782b9f13ed2deb3fee8a17863c1d88b38005a4604a93ebbc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ct={0x54, 0x17, 0x0, 0x0, {{0x7}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @remote}, @TCA_CT_LABELS={0x14, 0x7, "1fc075f6ec8940afab5885e58057ae3f"}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x4000880}, 0x20000080) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f, 0xa1}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400}) 922.241356ms ago: executing program 7 (id=15871): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) bind$x25(r1, &(0x7f0000000780), 0x12) bind$x25(r0, &(0x7f0000000080), 0x12) 801.268853ms ago: executing program 7 (id=15874): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000340)={'team0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000900)={r1, 0x1, 0x6, @link_local}, 0x10) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000040)={r1, 0x11, 0x6}, 0x10) 757.531545ms ago: executing program 1 (id=15876): r0 = syz_io_uring_setup(0x6440, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) setreuid(0x0, 0xee00) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x55, 0x2000, @fd_index=0xd, 0x7, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 752.915486ms ago: executing program 2 (id=15877): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000010a05d2"], 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) 696.840489ms ago: executing program 7 (id=15878): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) bind$can_j1939(r0, &(0x7f0000000000)={0x1d, r1, 0x0, {0x0, 0x0, 0x6}, 0x1}, 0x18) 690.692039ms ago: executing program 1 (id=15879): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005d00000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x1002, &(0x7f00000014c0)=""/4098, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0) socket(0x10, 0x803, 0x0) 631.463523ms ago: executing program 7 (id=15880): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20020009, 0x0, &(0x7f0000000240)={0x20, 0x0, 0xfffc, 0x360, 0x7}, 0x1a, 0x7, 0x60000000, 0x0, 0x4, 0x101, 0x0}) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000100)) 565.347547ms ago: executing program 5 (id=15881): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x111, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r1, 0xc}}, 0x10) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000600)={0x13, 0x10, 0xfa00, {&(0x7f0000000400), r1, 0x2}}, 0x18) 564.808807ms ago: executing program 1 (id=15882): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0) sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)={0x20, 0x15, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x20}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040011}, 0x24040808) 558.023727ms ago: executing program 5 (id=15883): r0 = socket$kcm(0x29, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000001300)='net/kcm\x00') ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={r0}) read$char_usb(r1, &(0x7f0000000040)=""/4109, 0x100d) 453.040003ms ago: executing program 5 (id=15884): bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000007d0000001801000020696c2500000000002020207b1af8ff00000000bfa1000000000000070100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10) 369.314628ms ago: executing program 7 (id=15885): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=@base={0x11, 0x4, 0x4, 0x2}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x10, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r2, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 369.061158ms ago: executing program 1 (id=15886): r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)={0x3c, r0, 0x1, 0x0, 0x0, {0x54}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008890}, 0xc084) sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x14, r0, 0x1, 0x70bd25, 0x4, {0x54}}, 0x14}, 0x1, 0x0, 0x0, 0x4048890}, 0x0) 368.891798ms ago: executing program 8 (id=15887): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00)) readv(r0, &(0x7f0000000200)=[{&(0x7f0000000300)=""/163, 0xa3}, {&(0x7f0000000180)=""/39, 0x27}], 0x2) 297.511582ms ago: executing program 5 (id=15888): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, 0x0, &(0x7f0000000180)='syzkaller\x00'}, 0x94) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000140), &(0x7f0000000180)=0x8) 242.709076ms ago: executing program 5 (id=15889): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0xfff, 0x4510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x10000, 0x0, 0x8, 0x8, 0x20002, 0x401, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x80a, &(0x7f0000000340)={[{@debug}, {@delalloc}, {@noblock_validity}, {@delalloc}, {@nodelalloc}, {@min_batch_time={'min_batch_time', 0x3d, 0x5a5c}}, {@errors_remount}]}, 0x4, 0x7b5, &(0x7f0000000540)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020660b, &(0x7f0000000480)={0x47, 0xffffffffffffffff, 0x4, 0x9}) 199.746868ms ago: executing program 1 (id=15890): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000008c0)={0x2, &(0x7f0000000140)=[{0x48, 0x1, 0x3}, {0x6, 0x1, 0x0, 0x4}]}) write(r0, &(0x7f0000000280)="1a2f", 0x2) 77.349945ms ago: executing program 8 (id=15891): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1) 24.701739ms ago: executing program 1 (id=15892): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000004000000000000000300000784"], 0x0, 0x4000005, 0x0, 0x0, 0x41100}, 0x94) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc1ea35512) r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001200b7a325bd7000fddbdf25200f07074e204e22030000002f00000001ffffffc300000006000000000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="de00fbff090000000000000008000000080003"], 0x54}, 0x1, 0x0, 0x0, 0x4008000}, 0x40000) 0s ago: executing program 5 (id=15893): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) recvfrom(r0, &(0x7f0000004000)=""/4112, 0xfffffffffffffedc, 0x2080, 0x0, 0x0) kernel console output (not intermixed with test programs): interface not active [ 380.472937][ T2965] netlink: 'syz.1.14319': attribute type 5 has an invalid length. [ 380.482563][ T2708] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 380.489603][ T2708] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 380.515589][ T2708] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 380.545297][ T2975] netlink: 300 bytes leftover after parsing attributes in process `syz.5.14324'. [ 380.662786][ T2708] hsr_slave_0: entered promiscuous mode [ 380.684162][ T2992] FAT-fs (loop5): Directory bread(block 64) failed [ 380.692395][ T2992] FAT-fs (loop5): Directory bread(block 65) failed [ 380.692932][ T2708] hsr_slave_1: entered promiscuous mode [ 380.713846][ T2992] FAT-fs (loop5): Directory bread(block 66) failed [ 380.720430][ T2992] FAT-fs (loop5): Directory bread(block 67) failed [ 380.735643][ T2708] debugfs: 'hsr0' already exists in 'hsr' [ 380.741467][ T2708] Cannot create hsr debugfs directory [ 380.766696][ T2992] FAT-fs (loop5): Directory bread(block 68) failed [ 380.773269][ T2992] FAT-fs (loop5): Directory bread(block 69) failed [ 380.813927][ T2992] FAT-fs (loop5): Directory bread(block 70) failed [ 380.823073][ T2992] FAT-fs (loop5): Directory bread(block 71) failed [ 380.842522][ T2992] FAT-fs (loop5): Directory bread(block 72) failed [ 380.860278][ T2992] FAT-fs (loop5): Directory bread(block 73) failed [ 380.922012][ T2992] syz.5.14328: attempt to access beyond end of device [ 380.922012][ T2992] loop5: rw=8388608, sector=1800, nr_sectors = 4 limit=256 [ 381.009096][ T2708] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 381.025535][ T2708] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 381.036393][ T2708] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 381.046251][ T2708] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 381.132713][ T3027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 381.168228][ T2708] 8021q: adding VLAN 0 to HW filter on device bond0 [ 381.215312][ T2708] 8021q: adding VLAN 0 to HW filter on device team0 [ 381.224119][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.245851][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 381.253065][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 381.301762][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 381.308918][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 381.378087][ T2708] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 381.388647][ T2708] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 381.403774][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 381.431858][ T3053] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14341'. [ 381.441872][ T3053] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14341'. [ 381.584702][ T2708] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 381.621716][ T3065] set_capacity_and_notify: 2 callbacks suppressed [ 381.621734][ T3065] loop2: detected capacity change from 0 to 256 [ 381.682643][ T3065] FAT-fs (loop2): Directory bread(block 64) failed [ 381.704533][ T3065] FAT-fs (loop2): Directory bread(block 65) failed [ 381.711125][ T3065] FAT-fs (loop2): Directory bread(block 66) failed [ 381.742874][ T3075] loop5: detected capacity change from 0 to 1024 [ 381.773773][ T3065] FAT-fs (loop2): Directory bread(block 67) failed [ 381.780564][ T3065] FAT-fs (loop2): Directory bread(block 68) failed [ 381.804886][ T3065] FAT-fs (loop2): Directory bread(block 69) failed [ 381.812115][ T3075] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 381.824735][ T3065] FAT-fs (loop2): Directory bread(block 70) failed [ 381.858093][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.868027][ T3065] FAT-fs (loop2): Directory bread(block 71) failed [ 381.904855][ T3065] FAT-fs (loop2): Directory bread(block 72) failed [ 381.911515][ T3065] FAT-fs (loop2): Directory bread(block 73) failed [ 381.941406][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 381.941421][ T29] audit: type=1400 audit(382.406:23516): avc: denied { setopt } for pid=3085 comm="syz.5.14349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 382.019484][ T2708] veth0_vlan: entered promiscuous mode [ 382.026302][ T3089] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14350'. [ 382.051420][ T2708] veth1_vlan: entered promiscuous mode [ 382.079839][ T2708] veth0_macvtap: entered promiscuous mode [ 382.102347][ T3093] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 382.126954][ T2708] veth1_macvtap: entered promiscuous mode [ 382.171179][ T2708] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 382.197766][ T2708] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 382.231265][ T29] audit: type=1400 audit(382.696:23517): avc: denied { read } for pid=3102 comm="syz.5.14356" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 382.254229][ T29] audit: type=1400 audit(382.696:23518): avc: denied { open } for pid=3102 comm="syz.5.14356" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 382.299724][ T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.336549][ T12] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.347517][ T29] audit: type=1400 audit(382.796:23519): avc: denied { mounton } for pid=2708 comm="syz-executor" path="/root/syzkaller.A8ldbL/syz-tmp" dev="sda1" ino=2051 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 382.372230][ T29] audit: type=1400 audit(382.796:23520): avc: denied { mount } for pid=2708 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 382.377104][ T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.395632][ T29] audit: type=1400 audit(382.796:23521): avc: denied { mounton } for pid=2708 comm="syz-executor" path="/root/syzkaller.A8ldbL/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 382.429666][ T29] audit: type=1400 audit(382.796:23522): avc: denied { mounton } for pid=2708 comm="syz-executor" path="/root/syzkaller.A8ldbL/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=107885 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 382.453884][ T12] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.465616][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 382.466453][ T29] audit: type=1400 audit(382.846:23523): avc: denied { mounton } for pid=2708 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 382.498037][ T29] audit: type=1400 audit(382.846:23524): avc: denied { mount } for pid=2708 comm="syz-executor" name="/" dev="gadgetfs" ino=3836 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 382.654802][ T29] audit: type=1400 audit(383.106:23525): avc: denied { read } for pid=3117 comm="syz.7.14221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 383.028067][T31920] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.048909][ T3152] loop2: detected capacity change from 0 to 512 [ 383.069615][ T3152] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.14374: bad orphan inode 11862016 [ 383.070783][ T3152] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 383.167103][ T3156] netlink: 68 bytes leftover after parsing attributes in process `syz.1.14375'. [ 383.167134][ T3156] netlink: 16 bytes leftover after parsing attributes in process `syz.1.14375'. [ 383.194141][ T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.201932][ T3152] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 95 vs 96 free clusters [ 383.253914][ T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.261129][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 383.302134][ T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.341660][ T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.456717][ T12] bridge_slave_1: left allmulticast mode [ 383.456742][ T12] bridge_slave_1: left promiscuous mode [ 383.456968][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 383.458493][ T12] bridge_slave_0: left allmulticast mode [ 383.458515][ T12] bridge_slave_0: left promiscuous mode [ 383.458787][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 383.483815][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 383.711008][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 383.736515][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 383.747043][ T12] bond0 (unregistering): Released all slaves [ 383.765080][ T12] bond1 (unregistering): Released all slaves [ 383.846047][ T12] tipc: Left network mode [ 384.238735][ T3259] 9pnet_fd: p9_fd_create_unix (3259): problem connecting socket: ./file1: -1 [ 384.289047][ T12] hsr_slave_0: left promiscuous mode [ 384.318654][ T12] hsr_slave_1: left promiscuous mode [ 384.335324][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 384.342768][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 384.382607][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 384.390139][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 384.419193][ T12] veth1_macvtap: left promiscuous mode [ 384.424826][ T12] veth0_macvtap: left promiscuous mode [ 384.430369][ T12] veth1_vlan: left promiscuous mode [ 384.443916][ T12] veth0_vlan: left promiscuous mode [ 384.512933][ T3291] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14422'. [ 384.522162][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 384.531606][ T3291] netlink: 'syz.7.14422': attribute type 1 has an invalid length. [ 384.539547][ T3291] netlink: 'syz.7.14422': attribute type 2 has an invalid length. [ 384.547670][ T3291] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14422'. [ 384.614982][ T12] team0 (unregistering): Port device team_slave_1 removed [ 384.630848][ T12] team0 (unregistering): Port device team_slave_0 removed [ 384.735756][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2276.tmp-b7:2' failed: Read-only file system [ 384.769138][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2273.tmp-b7:5' failed: Read-only file system [ 384.772499][ T3164] lo speed is unknown, defaulting to 1000 [ 384.824110][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2276.tmp-b7:2' failed: Read-only file system [ 384.862883][ T3319] loop5: detected capacity change from 0 to 4096 [ 384.877048][ T3319] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.929185][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.949922][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2276.tmp-b7:2' failed: Read-only file system [ 384.955236][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2277.tmp-b7:5' failed: Read-only file system [ 384.972921][ T3331] loop7: detected capacity change from 0 to 512 [ 384.990308][ T12] IPVS: stop unused estimator thread 0... [ 385.019763][ T3331] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 385.028877][ T3331] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 385.043304][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2278.tmp-b7:7' failed: Read-only file system [ 385.062938][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 385.084164][ T3331] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 385.104872][ T3303] udevd[3303]: symlink '../../loop2' '/dev/disk/by-diskseq/2276.tmp-b7:2' failed: Read-only file system [ 385.105685][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system [ 385.134488][ T3331] System zones: 0-2, 18-18, 34-35 [ 385.146170][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2278.tmp-b7:7' failed: Read-only file system [ 385.162892][ T3331] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 385.191403][ T3331] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended [ 385.197219][ T3164] chnl_net:caif_netlink_parms(): no params data found [ 385.229978][ T3331] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 385.241089][ T3331] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 385.284249][ T3331] EXT4-fs error (device loop7): ext4_generic_delete_entry:2666: inode #2: block 3: comm syz.7.14432: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0 [ 385.334999][ T3164] bridge0: port 1(bridge_slave_0) entered blocking state [ 385.342256][ T3164] bridge0: port 1(bridge_slave_0) entered disabled state [ 385.356756][ T3164] bridge_slave_0: entered allmulticast mode [ 385.363330][ T3164] bridge_slave_0: entered promiscuous mode [ 385.369459][ T3331] EXT4-fs error (device loop7) in ext4_delete_entry:2737: Corrupt filesystem [ 385.380111][ T3164] bridge0: port 2(bridge_slave_1) entered blocking state [ 385.387308][ T3164] bridge0: port 2(bridge_slave_1) entered disabled state [ 385.395037][ T3164] bridge_slave_1: entered allmulticast mode [ 385.412153][ T3164] bridge_slave_1: entered promiscuous mode [ 385.439163][ T3380] loop2: detected capacity change from 0 to 128 [ 385.444597][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.464449][ T3164] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 385.475667][ T3164] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 385.489158][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.489158][ T3380] loop2: rw=2049, sector=138, nr_sectors = 72 limit=128 [ 385.517875][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.517875][ T3380] loop2: rw=2049, sector=210, nr_sectors = 8 limit=128 [ 385.546175][ T3164] team0: Port device team_slave_0 added [ 385.553245][ T3164] team0: Port device team_slave_1 added [ 385.558977][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 385.572249][ T3390] loop7: detected capacity change from 0 to 512 [ 385.593615][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.593615][ T3380] loop2: rw=8390657, sector=216, nr_sectors = 2 limit=128 [ 385.607481][ T3380] buffer_io_error: 30 callbacks suppressed [ 385.607499][ T3380] Buffer I/O error on dev loop2, logical block 108, lost async page write [ 385.622602][ T3390] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 385.667285][ T3390] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 385.667858][ T3164] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 385.679909][ T3390] System zones: 1-12 [ 385.682409][ T3164] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 385.682427][ T3390] [ 385.714722][ T3164] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 385.721181][ T3390] EXT4-fs error (device loop7): ext4_iget_extra_inode:5073: inode #15: comm syz.7.14442: corrupted in-inode xattr: e_value size too large [ 385.742380][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.742380][ T3380] loop2: rw=2049, sector=234, nr_sectors = 8 limit=128 [ 385.765840][ T3164] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 385.772859][ T3164] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 385.799066][ T3390] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.14442: couldn't read orphan inode 15 (err -117) [ 385.799694][ T3390] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 385.811648][ T3164] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 385.842706][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.842706][ T3380] loop2: rw=8390657, sector=240, nr_sectors = 2 limit=128 [ 385.856616][ T3380] Buffer I/O error on dev loop2, logical block 120, lost async page write [ 385.888659][ T3164] hsr_slave_0: entered promiscuous mode [ 385.908651][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.908651][ T3380] loop2: rw=2049, sector=242, nr_sectors = 8 limit=128 [ 385.910885][ T3164] hsr_slave_1: entered promiscuous mode [ 385.984580][ T3380] syz.2.14440: attempt to access beyond end of device [ 385.984580][ T3380] loop2: rw=8390657, sector=248, nr_sectors = 2 limit=128 [ 385.985345][ T3164] debugfs: 'hsr0' already exists in 'hsr' [ 385.998729][ T3380] Buffer I/O error on dev loop2, logical block 124, lost async page write [ 386.005889][ T3164] Cannot create hsr debugfs directory [ 386.050287][ T3380] syz.2.14440: attempt to access beyond end of device [ 386.050287][ T3380] loop2: rw=2049, sector=218, nr_sectors = 8 limit=128 [ 386.079444][ T3380] syz.2.14440: attempt to access beyond end of device [ 386.079444][ T3380] loop2: rw=8390657, sector=224, nr_sectors = 2 limit=128 [ 386.093346][ T3380] Buffer I/O error on dev loop2, logical block 112, lost async page write [ 386.156625][ T3380] syz.2.14440: attempt to access beyond end of device [ 386.156625][ T3380] loop2: rw=2049, sector=226, nr_sectors = 8 limit=128 [ 386.194681][ T3380] syz.2.14440: attempt to access beyond end of device [ 386.194681][ T3380] loop2: rw=8390657, sector=232, nr_sectors = 2 limit=128 [ 386.208623][ T3380] Buffer I/O error on dev loop2, logical block 116, lost async page write [ 386.247175][ T3437] netlink: 'syz.1.14453': attribute type 29 has an invalid length. [ 386.280463][ T3437] netlink: 'syz.1.14453': attribute type 29 has an invalid length. [ 386.339621][ T3164] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 386.373649][ T3164] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 386.414858][ T3164] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 386.449082][ T3164] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 386.465661][ T3446] loop5: detected capacity change from 0 to 1024 [ 386.488277][ T3446] EXT4-fs: Ignoring removed oldalloc option [ 386.494344][ T3446] EXT4-fs: Ignoring removed bh option [ 386.570297][ T3446] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 386.593794][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 386.627331][ T3164] 8021q: adding VLAN 0 to HW filter on device bond0 [ 386.635660][ T3469] loop1: detected capacity change from 0 to 512 [ 386.643465][ T3164] 8021q: adding VLAN 0 to HW filter on device team0 [ 386.658178][ T3469] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.14462: invalid indirect mapped block 256 (level 2) [ 386.672716][ T3164] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 386.683253][ T3164] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 386.704490][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 386.709652][ T3472] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14463'. [ 386.711613][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 386.721039][ T3472] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 386.738736][ T3469] EXT4-fs (loop1): 2 truncates cleaned up [ 386.759640][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 386.766760][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 386.774959][ T3469] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 386.876935][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.954413][ T3164] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 386.980754][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.995430][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 386.995450][ T29] audit: type=1400 audit(387.466:23542): avc: denied { ioctl } for pid=3486 comm="syz.2.14469" path="socket:[109624]" dev="sockfs" ino=109624 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 387.028898][ T3485] loop1: detected capacity change from 0 to 512 [ 387.080925][ T3485] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 387.156821][ T3485] EXT4-fs error (device loop1): htree_dirblock_to_tree:1051: inode #2: comm syz.1.14467: Directory hole found for htree leaf block 0 [ 387.187329][ T29] audit: type=1400 audit(387.656:23543): avc: denied { shutdown } for pid=3496 comm="syz.2.14471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 387.251359][ T3310] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 387.299321][ T3504] loop2: detected capacity change from 0 to 1024 [ 387.326281][ T3504] EXT4-fs: Ignoring removed nomblk_io_submit option [ 387.371052][ T3504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 387.394210][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.420571][ T3164] veth0_vlan: entered promiscuous mode [ 387.435555][ T3515] loop1: detected capacity change from 0 to 512 [ 387.452435][ T3515] EXT4-fs (loop1): orphan cleanup on readonly fs [ 387.459124][ T3515] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 387.467613][ T3515] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 1024: comm syz.1.14475: invalid block [ 387.480160][ T3164] veth1_vlan: entered promiscuous mode [ 387.487001][ T3515] EXT4-fs (loop1): Remounting filesystem read-only [ 387.493884][ T3515] EXT4-fs (loop1): 1 truncate cleaned up [ 387.500176][ T3515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 387.507841][ T3164] veth0_macvtap: entered promiscuous mode [ 387.520869][ T3164] veth1_macvtap: entered promiscuous mode [ 387.530684][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.564694][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.631700][ T3164] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 387.639047][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 387.696102][ T29] audit: type=1400 audit(388.136:23544): avc: denied { name_connect } for pid=3528 comm="syz.7.14480" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 387.770266][ T3164] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 387.813922][ T37] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.823076][ T37] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.879466][ T37] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.900712][ T37] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 388.120798][ T3570] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14496'. [ 388.130619][ T3570] netlink: 240 bytes leftover after parsing attributes in process `syz.2.14496'. [ 388.139864][ T3570] netlink: 424 bytes leftover after parsing attributes in process `syz.2.14496'. [ 388.146694][ T29] audit: type=1400 audit(388.606:23545): avc: denied { read } for pid=3556 comm="syz.1.14492" laddr=::1 lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 388.165689][ T3570] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14496'. [ 388.325729][ T3584] netlink: 128 bytes leftover after parsing attributes in process `syz.8.14502'. [ 388.673793][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 388.704719][ T3607] program syz.5.14511 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 388.820049][ T3620] netlink: 'syz.2.14518': attribute type 4 has an invalid length. [ 388.828000][ T3620] netlink: 17 bytes leftover after parsing attributes in process `syz.2.14518'. [ 388.899086][ T29] audit: type=1326 audit(389.366:23546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3626 comm="syz.1.14522" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb687ceaeb9 code=0x0 [ 388.964208][ T29] audit: type=1400 audit(389.426:23547): avc: denied { connect } for pid=3628 comm="syz.7.14523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 389.063091][ T29] audit: type=1326 audit(389.526:23548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.2.14528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3717eaeb9 code=0x7ffc0000 [ 389.086197][ T29] audit: type=1326 audit(389.526:23549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.2.14528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3717eaeb9 code=0x7ffc0000 [ 389.109279][ T29] audit: type=1326 audit(389.526:23550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.2.14528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3717eaeb9 code=0x7ffc0000 [ 389.132295][ T29] audit: type=1326 audit(389.526:23551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3639 comm="syz.2.14528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3717eaeb9 code=0x7ffc0000 [ 389.152246][ T3644] loop2: detected capacity change from 0 to 256 [ 389.203404][ T3646] program syz.8.14531 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 389.352086][ T3661] loop7: detected capacity change from 0 to 512 [ 389.359547][ T3661] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 389.369539][ T3661] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 389.386274][ T3661] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 389.401423][ T3661] System zones: 0-2, 18-18, 34-35 [ 389.407980][ T3661] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 389.422930][ T3661] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended [ 389.434985][ T3661] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 389.443099][ T3661] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 389.452832][ T3661] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.14538: bg 0: block 353: padding at end of block bitmap is not set [ 389.496164][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.529699][ T3676] netlink: 24 bytes leftover after parsing attributes in process `syz.8.14543'. [ 389.681081][ T3688] netlink: 36 bytes leftover after parsing attributes in process `syz.5.14548'. [ 389.706863][ T3688] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14548'. [ 389.723807][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 389.787364][ T3304] udevd[3304]: symlink '../../loop1' '/dev/disk/by-diskseq/2294.tmp-b7:1' failed: Read-only file system [ 389.804887][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2288.tmp-b7:5' failed: Read-only file system [ 389.861378][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2288.tmp-b7:5' failed: Read-only file system [ 389.887968][ T3304] udevd[3304]: symlink '../../loop1' '/dev/disk/by-diskseq/2294.tmp-b7:1' failed: Read-only file system [ 389.901751][ T3698] loop5: detected capacity change from 0 to 512 [ 389.986518][ T3304] udevd[3304]: symlink '../../loop1' '/dev/disk/by-diskseq/2294.tmp-b7:1' failed: Read-only file system [ 389.993450][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2298.tmp-b7:7' failed: Read-only file system [ 390.009854][ T3698] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 390.040679][ T3698] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 390.042120][ T6303] udevd[6303]: symlink '../../loop5' '/dev/disk/by-diskseq/2299.tmp-b7:5' failed: Read-only file system [ 390.057700][ T3698] EXT4-fs (loop5): 1 truncate cleaned up [ 390.085272][ T3698] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.086844][ T6303] udevd[6303]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 390.123491][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2299.tmp-b7:5' failed: Read-only file system [ 390.152018][ T3304] udevd[3304]: symlink '../../loop1' '/dev/disk/by-diskseq/2294.tmp-b7:1' failed: Read-only file system [ 390.170527][ T3698] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1324: inode #12: block 7: comm syz.5.14553: path /1023/bus/file0: bad entry in directory: directory entry overrun - offset=80, inode=2147483648, rec_len=1024, size=60 fake=0 [ 390.216778][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.428916][ T3736] loop8: detected capacity change from 0 to 512 [ 390.467855][ T3736] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.507072][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.598329][ T3759] loop5: detected capacity change from 0 to 1024 [ 390.608751][ T3759] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 390.620831][ T3759] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 390.637308][ T3759] EXT4-fs error (device loop5): ext4_get_journal_inode:5849: inode #32: comm syz.5.14578: iget: special inode unallocated [ 390.650460][ T3759] EXT4-fs (loop5): Remounting filesystem read-only [ 390.664489][ T3759] EXT4-fs (loop5): no journal found [ 390.664585][ T3762] loop2: detected capacity change from 0 to 512 [ 390.676211][ T3759] EXT4-fs (loop5): can't get journal size [ 390.680581][ T3762] EXT4-fs: Ignoring removed nomblk_io_submit option [ 390.689953][ T3759] EXT4-fs (loop5): filesystem is read-only [ 390.696377][ T3759] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 390.712432][ T3762] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 390.720420][ T3762] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 390.731817][ T3762] EXT4-fs (loop2): orphan cleanup on readonly fs [ 390.738551][ T3762] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 390.753181][ T3762] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 390.760036][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 390.769137][ T3762] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.14580: bg 0: block 40: padding at end of block bitmap is not set [ 390.769508][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.783572][ T3762] EXT4-fs (loop2): Remounting filesystem read-only [ 390.783659][ T3762] EXT4-fs (loop2): 1 truncate cleaned up [ 390.805380][ T3762] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 390.837421][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.012973][ T3786] atomic_op ffff88811a4e7128 conn xmit_atomic 0000000000000000 [ 391.043648][ T3790] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 391.092027][ T3790] EXT4-fs (loop1): 1 truncate cleaned up [ 391.121790][ T3790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.155172][ T3790] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 391.171011][ T3790] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 391.171381][ T3804] program syz.8.14599 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 391.218327][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.360784][ T3298] Alternate GPT is invalid, using primary GPT. [ 391.367357][ T3298] loop2: p1 p2 p3 [ 391.371120][ T3298] loop2: partition table partially beyond EOD, truncated [ 391.416116][ T3825] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.14608: inode has both inline data and extents flags [ 391.439522][ T3831] program syz.7.14612 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 391.449219][ T3825] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.14608: couldn't read orphan inode 15 (err -117) [ 391.462046][ T3817] Alternate GPT is invalid, using primary GPT. [ 391.468527][ T3817] loop2: p1 p2 p3 [ 391.472370][ T3817] loop2: partition table partially beyond EOD, truncated [ 391.487838][ T3825] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.508134][ T2999] Alternate GPT is invalid, using primary GPT. [ 391.515304][ T2999] loop2: p1 p2 p3 [ 391.519078][ T2999] loop2: partition table partially beyond EOD, truncated [ 391.549518][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.641202][ T3844] IPVS: Unknown mcast interface: vetN1_macvtap [ 391.736340][ T3853] set_capacity_and_notify: 4 callbacks suppressed [ 391.736371][ T3853] loop8: detected capacity change from 0 to 1024 [ 391.803772][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 391.839524][ T3853] EXT4-fs error (device loop8): ext4_free_blocks:6728: comm syz.8.14618: Freeing blocks not in datazone - block = 0, count = 16 [ 392.409987][ T29] kauditd_printk_skb: 21 callbacks suppressed [ 392.410007][ T29] audit: type=1400 audit(392.876:23572): avc: denied { firmware_load } for pid=3925 comm="syz.8.14639" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 392.612107][ T3953] loop8: detected capacity change from 0 to 128 [ 392.644893][ T3955] loop7: detected capacity change from 0 to 1024 [ 392.658512][ T3955] EXT4-fs: Ignoring removed bh option [ 392.698110][ T3955] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.14646: Allocating blocks 497-513 which overlap fs metadata [ 392.724306][ T3955] EXT4-fs (loop7): Remounting filesystem read-only [ 392.736740][ T3965] loop8: detected capacity change from 0 to 128 [ 392.743576][ T3965] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 392.843967][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 392.983826][ T29] audit: type=1400 audit(393.436:23573): avc: denied { name_connect } for pid=3984 comm="syz.5.14657" dest=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 393.169021][ T4006] __nla_validate_parse: 3 callbacks suppressed [ 393.169066][ T4006] netlink: 12 bytes leftover after parsing attributes in process `syz.8.14665'. [ 393.310587][ T4021] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3) [ 393.317197][ T4021] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 393.324847][ T4021] vhci_hcd vhci_hcd.0: Device attached [ 393.336319][ T4023] vhci_hcd: connection closed [ 393.338607][ T3429] vhci_hcd vhci_hcd.7: stop threads [ 393.348630][ T3429] vhci_hcd vhci_hcd.7: release socket [ 393.355102][ T3429] vhci_hcd vhci_hcd.7: disconnect device [ 393.358776][ T4027] loop8: detected capacity change from 0 to 512 [ 393.505097][ T4038] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 393.505097][ T4038] The task syz.2.14679 (4038) triggered the difference, watch for misbehavior. [ 393.630091][ T4047] loop8: detected capacity change from 0 to 128 [ 393.722835][ T4058] program syz.8.14687 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 393.826200][ T4068] loop1: detected capacity change from 0 to 1024 [ 393.836168][ T4068] EXT4-fs: inline encryption not supported [ 393.850429][ T4068] EXT4-fs: Ignoring removed nobh option [ 393.856832][ T4068] EXT4-fs: Ignoring removed bh option [ 393.873774][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 394.109178][ T29] audit: type=1326 audit(395.579:23574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.193038][ T29] audit: type=1326 audit(395.599:23575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.216368][ T29] audit: type=1326 audit(395.609:23576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.239411][ T29] audit: type=1326 audit(395.609:23577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.262436][ T29] audit: type=1326 audit(395.609:23578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.285680][ T29] audit: type=1326 audit(395.609:23579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.308675][ T29] audit: type=1326 audit(395.609:23580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.331744][ T29] audit: type=1326 audit(395.609:23581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4104 comm="syz.1.14703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 394.488066][ T4122] bridge0: port 2(bridge_slave_1) entered disabled state [ 394.495417][ T4122] bridge0: port 1(bridge_slave_0) entered disabled state [ 394.509675][ T4133] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14712'. [ 394.519509][ T4133] netlink: 56 bytes leftover after parsing attributes in process `syz.8.14712'. [ 394.586811][ T4122] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 394.597830][ T4122] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 394.645348][ T4133] geneve2: entered promiscuous mode [ 394.650737][ T4133] geneve2: entered allmulticast mode [ 394.799914][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2311.tmp-b7:2' failed: Read-only file system [ 394.819326][ T3304] udevd[3304]: symlink '../../loop8' '/dev/disk/by-diskseq/2326.tmp-b7:8' failed: Read-only file system [ 394.859604][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2311.tmp-b7:2' failed: Read-only file system [ 394.885950][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2305.tmp-b7:5' failed: Read-only file system [ 394.899928][ T6303] udevd[6303]: symlink '../../loop7' '/dev/disk/by-diskseq/2322.tmp-b7:7' failed: Read-only file system [ 394.913802][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 394.959765][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2326.tmp-b7:8' failed: Read-only file system [ 394.973503][ T6303] udevd[6303]: symlink '../../loop5' '/dev/disk/by-diskseq/2305.tmp-b7:5' failed: Read-only file system [ 394.995236][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2311.tmp-b7:2' failed: Read-only file system [ 395.033578][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2322.tmp-b7:7' failed: Read-only file system [ 395.045470][ T4178] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 395.073327][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2311.tmp-b7:2' failed: Read-only file system [ 395.127008][ T4187] netlink: 'syz.5.14739': attribute type 2 has an invalid length. [ 395.134934][ T4187] netlink: 4 bytes leftover after parsing attributes in process `syz.5.14739'. [ 395.582844][ T4235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14760'. [ 395.675515][ T4228] lo speed is unknown, defaulting to 1000 [ 395.736712][ T4249] bond0: option all_slaves_active: invalid value (5) [ 395.905050][ T4267] loop8: detected capacity change from 0 to 256 [ 395.948381][ T4267] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 395.958634][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 395.967132][ T4267] FAT-fs (loop8): Filesystem has been set read-only [ 395.974567][ T4267] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 395.981606][ T4271] loop1: detected capacity change from 0 to 512 [ 395.991293][ T4267] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 396.002095][ T4269] loop2: detected capacity change from 0 to 512 [ 396.078394][ T4276] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #15: comm syz.8.14778: iget: bad i_size value: 38620345925642 [ 396.095888][ T4276] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.14778: couldn't read orphan inode 15 (err -117) [ 396.295340][ T4292] netlink: 444 bytes leftover after parsing attributes in process `syz.1.14786'. [ 396.307050][ T4293] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.14778: bg 0: block 5: invalid block bitmap [ 396.333788][ T4292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14786'. [ 396.354113][ T4293] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1552 with error 28 [ 396.367457][ T4293] EXT4-fs (loop8): This should not happen!! Data will be lost [ 396.367457][ T4293] [ 396.377176][ T4293] EXT4-fs (loop8): Total free blocks count 0 [ 396.383288][ T4293] EXT4-fs (loop8): Free/Dirty block details [ 396.390045][ T4293] EXT4-fs (loop8): free_blocks=0 [ 396.395105][ T4293] EXT4-fs (loop8): dirty_blocks=1556 [ 396.400501][ T4293] EXT4-fs (loop8): Block reservation details [ 396.407271][ T4293] EXT4-fs (loop8): i_reserved_data_blocks=1556 [ 396.646696][ T37] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 1552 with max blocks 4 with error 28 [ 396.659256][ T37] EXT4-fs (loop8): This should not happen!! Data will be lost [ 396.659256][ T37] [ 396.862183][ T4352] set_capacity_and_notify: 1 callbacks suppressed [ 396.862199][ T4352] loop2: detected capacity change from 0 to 512 [ 396.892776][ T4352] EXT4-fs: Ignoring removed oldalloc option [ 396.901259][ T4352] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 396.926546][ T4359] program syz.8.14809 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 396.936665][ T4352] EXT4-fs (loop2): 1 truncate cleaned up [ 396.956880][ T4352] SELinux: Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped). [ 396.993791][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 397.197838][ T4389] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 397.519686][ T29] kauditd_printk_skb: 51 callbacks suppressed [ 397.519701][ T29] audit: type=1400 audit(398.989:23633): avc: denied { write } for pid=10 comm="kworker/0:1" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=113073 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 397.616195][ T4433] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14836'. [ 397.650266][ T4435] netlink: 'syz.5.14837': attribute type 1 has an invalid length. [ 397.674783][ T4435] 8021q: adding VLAN 0 to HW filter on device bond2 [ 397.752615][ T4446] erspan0: entered promiscuous mode [ 397.949987][ T4472] loop5: detected capacity change from 0 to 128 [ 397.979856][ T4476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14852'. [ 398.033835][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 398.082550][ T4484] vcan0: tx drop: invalid da for name 0x00000000000000ee [ 398.190052][ T29] audit: type=1400 audit(399.659:23634): avc: denied { relabelfrom } for pid=4494 comm="syz.5.14859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 398.209745][ T29] audit: type=1400 audit(399.659:23635): avc: denied { relabelto } for pid=4494 comm="syz.5.14859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 398.337109][ T29] audit: type=1400 audit(399.809:23636): avc: denied { accept } for pid=4507 comm="syz.1.14861" path="socket:[112119]" dev="sockfs" ino=112119 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 398.402666][ T4517] loop5: detected capacity change from 0 to 1024 [ 398.513994][ T29] audit: type=1400 audit(399.969:23637): avc: denied { lock } for pid=4516 comm="syz.5.14866" path="/1096/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 398.537238][ T29] audit: type=1400 audit(399.969:23638): avc: denied { link } for pid=4516 comm="syz.5.14866" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 398.575002][ T4534] netlink: 36 bytes leftover after parsing attributes in process `syz.2.14871'. [ 398.929730][ T29] audit: type=1400 audit(400.399:23639): avc: denied { read } for pid=4555 comm="syz.8.14880" path="socket:[113295]" dev="sockfs" ino=113295 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 398.999749][ T4552] loop7: detected capacity change from 0 to 8192 [ 399.083784][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 399.572213][ T4574] lo speed is unknown, defaulting to 1000 [ 399.812890][ T4605] loop2: detected capacity change from 0 to 1024 [ 399.886937][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2343.tmp-b7:5' failed: Read-only file system [ 399.912995][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2347.tmp-b7:2' failed: Read-only file system [ 399.959642][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 400.005224][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2343.tmp-b7:5' failed: Read-only file system [ 400.030300][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2333.tmp-b7:1' failed: Read-only file system [ 400.095155][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2333.tmp-b7:1' failed: Read-only file system [ 400.113805][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 400.141286][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2344.tmp-b7:7' failed: Read-only file system [ 400.217395][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2343.tmp-b7:5' failed: Read-only file system [ 400.237339][ T29] audit: type=1400 audit(401.709:23640): avc: denied { bind } for pid=4625 comm="syz.5.14909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 400.258337][ T4620] ALSA: seq fatal error: cannot create timer (-19) [ 400.328673][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2343.tmp-b7:5' failed: Read-only file system [ 400.386123][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2344.tmp-b7:7' failed: Read-only file system [ 400.465125][ T4636] SELinux: failed to load policy [ 400.604124][ T29] audit: type=1400 audit(402.079:23641): avc: denied { setopt } for pid=4658 comm="syz.1.14924" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 400.695458][ T29] audit: type=1400 audit(402.159:23642): avc: denied { write } for pid=4664 comm="syz.1.14926" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 400.927235][ T4663] loop8: detected capacity change from 0 to 32768 [ 400.930596][ T4689] netlink: 72 bytes leftover after parsing attributes in process `syz.1.14936'. [ 400.947755][ T4689] netlink: 12 bytes leftover after parsing attributes in process `syz.1.14936'. [ 400.957721][ T4689] netlink: 16 bytes leftover after parsing attributes in process `syz.1.14936'. [ 401.163775][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 401.346292][ T4724] netlink: 'syz.2.14952': attribute type 13 has an invalid length. [ 401.355163][ T4724] netlink: 24859 bytes leftover after parsing attributes in process `syz.2.14952'. [ 401.764850][ T4760] random: crng reseeded on system resumption [ 401.942789][ T4779] netlink: 'syz.2.14976': attribute type 3 has an invalid length. [ 401.969461][ T4783] program syz.8.14977 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 402.034372][ T4787] loop7: detected capacity change from 0 to 512 [ 402.203812][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 402.269510][ T4822] loop5: detected capacity change from 0 to 256 [ 402.385449][ T4835] netlink: 'syz.1.14994': attribute type 8 has an invalid length. [ 402.393329][ T4835] sch_fq: defrate 0 ignored. [ 402.552403][ T4859] program syz.1.15001 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 402.617002][ T4868] netlink: 308 bytes leftover after parsing attributes in process `syz.2.15005'. [ 402.742028][ T4882] loop2: detected capacity change from 0 to 512 [ 402.771072][ T4882] EXT4-fs mount: 22 callbacks suppressed [ 402.771092][ T4882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 402.792562][ T4882] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.15011: corrupted xattr block 33: invalid checksum [ 402.820081][ T4882] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 402.832635][ T4882] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.15011: corrupted xattr block 33: invalid checksum [ 402.847159][ T4882] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 402.856430][ T4893] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.15011: corrupted xattr block 33: invalid checksum [ 402.874552][ T4882] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.15011: corrupted xattr block 33: invalid checksum [ 402.888092][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 402.888111][ T29] audit: type=1400 audit(404.349:23652): avc: denied { read write } for pid=4881 comm="syz.2.15011" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 402.923667][ T4893] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 402.933096][ T4893] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.15011: corrupted xattr block 33: invalid checksum [ 402.947252][ T4893] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 402.974909][ T4882] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 403.007961][ T29] audit: type=1400 audit(404.399:23653): avc: denied { append } for pid=4881 comm="syz.2.15011" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 403.030624][ T29] audit: type=1400 audit(404.429:23654): avc: denied { open } for pid=4881 comm="syz.2.15011" path="/3092/file0/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 403.094999][ T29] audit: type=1400 audit(404.569:23655): avc: denied { mount } for pid=4912 comm="syz.8.15024" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 403.169521][ T3413] IPVS: starting estimator thread 0... [ 403.181899][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.202186][ T4923] syz.8.15029 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 403.208371][ T29] audit: type=1326 audit(404.669:23656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.236436][ T29] audit: type=1326 audit(404.669:23657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.243941][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 403.261326][ T29] audit: type=1326 audit(404.669:23658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.291434][ T29] audit: type=1326 audit(404.669:23659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.315288][ T29] audit: type=1326 audit(404.669:23660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.338588][ T4920] IPVS: using max 1776 ests per chain, 88800 per kthread [ 403.346143][ T29] audit: type=1326 audit(404.669:23661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.8.15029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 403.570905][ T4948] loop1: detected capacity change from 0 to 1024 [ 403.636702][ T4948] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 403.674471][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.759680][ T4970] program syz.7.15050 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 403.789633][ T4972] netlink: 40 bytes leftover after parsing attributes in process `syz.5.15051'. [ 403.843347][ T4978] program syz.7.15054 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 403.908083][ T36] kernel write not supported for file /snd/seq (pid: 36 comm: kworker/1:1) [ 404.115603][ T4997] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4997 comm=syz.8.15062 [ 404.140182][ T5001] loop1: detected capacity change from 0 to 512 [ 404.265078][ T5001] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15064: couldn't read orphan inode 26 (err -116) [ 404.277206][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 404.346490][ T5001] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 404.416513][ T5001] EXT4-fs (loop1): shut down requested (0) [ 404.518755][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.742582][ T5033] loop1: detected capacity change from 0 to 512 [ 404.762739][ T5035] loop5: detected capacity change from 0 to 128 [ 404.790375][ T5033] EXT4-fs error (device loop1): ext4_iget_extra_inode:5073: inode #15: comm syz.1.15077: corrupted in-inode xattr: invalid ea_ino [ 404.846712][ T5033] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15077: couldn't read orphan inode 15 (err -117) [ 404.860305][ T5033] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 404.903383][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2362.tmp-b7:5' failed: Read-only file system [ 404.903392][ T5038] loop8: detected capacity change from 0 to 1024 [ 404.926357][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.942178][ T5038] EXT4-fs: Ignoring removed orlov option [ 404.948733][ T5038] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 404.975076][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2362.tmp-b7:5' failed: Read-only file system [ 404.976252][ T6303] udevd[6303]: symlink '../../loop2' '/dev/disk/by-diskseq/2356.tmp-b7:2' failed: Read-only file system [ 404.996274][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2362.tmp-b7:5' failed: Read-only file system [ 405.012482][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2363.tmp-b7:8' failed: Read-only file system [ 405.039321][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-label/syzkaller.tmp-b7:8' failed: Read-only file system [ 405.050618][ T6303] udevd[6303]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 405.058993][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2364.tmp-b7:5' failed: Read-only file system [ 405.075251][ T5038] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 405.092869][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2363.tmp-b7:8' failed: Read-only file system [ 405.110154][ T6303] udevd[6303]: symlink '../../loop1' '/dev/disk/by-diskseq/2361.tmp-b7:1' failed: Read-only file system [ 405.237629][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.313774][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 405.383659][ T5068] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15093'. [ 405.396844][ T5066] loop8: detected capacity change from 0 to 2048 [ 405.434659][ T5066] loop8: p1 p2 [ 405.448878][ T5066] netlink: 204 bytes leftover after parsing attributes in process `syz.8.15092'. [ 405.723292][ T5102] netlink: 20 bytes leftover after parsing attributes in process `syz.7.15109'. [ 405.820445][ T5110] netlink: 24 bytes leftover after parsing attributes in process `syz.2.15113'. [ 405.830391][ T5110] netlink: 24 bytes leftover after parsing attributes in process `syz.2.15113'. [ 405.871806][ T5114] loop5: detected capacity change from 0 to 512 [ 405.908503][ T5114] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 405.936322][ T5114] EXT4-fs (loop5): orphan cleanup on readonly fs [ 405.942790][ T5114] EXT4-fs error (device loop5): ext4_orphan_get:1391: comm syz.5.15114: inode #15: comm syz.5.15114: iget: illegal inode # [ 405.974214][ T5114] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.15114: couldn't read orphan inode 15 (err -117) [ 405.989212][ T5114] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 405.992760][ T5118] tap0: tun_chr_ioctl cmd 1074025681 [ 406.066121][ T5127] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 406.096554][ T5127] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 406.164527][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.186363][ T5139] program syz.1.15126 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 406.281570][ T5143] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 406.305483][ T5143] EXT4-fs (loop2): 1 truncate cleaned up [ 406.312130][ T5149] pimreg3: entered allmulticast mode [ 406.320141][ T5143] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 406.353806][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 406.371112][ T5143] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.15127: invalid indirect mapped block 4294901760 (level 0) [ 406.418550][ T5143] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.15127: invalid indirect mapped block 4294967295 (level 1) [ 406.523581][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.769390][ T5197] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 406.813014][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.018705][ T5214] can0: slcan on ttyS3. [ 407.074651][ T5214] can0 (unregistered): slcan off ttyS3. [ 407.095774][ T5214] can0: slcan on ttyS3. [ 407.144184][ T5213] can0 (unregistered): slcan off ttyS3. [ 407.199108][ T5232] netlink: 'syz.1.15162': attribute type 1 has an invalid length. [ 407.236457][ T5238] set_capacity_and_notify: 2 callbacks suppressed [ 407.236473][ T5238] loop2: detected capacity change from 0 to 256 [ 407.325620][ T5243] loop7: detected capacity change from 0 to 512 [ 407.338742][ T5243] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 407.365110][ T5243] EXT4-fs (loop7): 1 truncate cleaned up [ 407.387470][ T5243] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 407.403770][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 407.437713][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.733510][ T5290] loop8: detected capacity change from 0 to 1024 [ 407.741494][ T5290] EXT4-fs: Ignoring removed orlov option [ 407.747350][ T5292] netlink: 220 bytes leftover after parsing attributes in process `syz.1.15182'. [ 407.757809][ T5290] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 407.809657][ T5290] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 407.811576][ T5299] netlink: 108 bytes leftover after parsing attributes in process `syz.1.15184'. [ 407.867578][ T5304] netlink: 4 bytes leftover after parsing attributes in process `syz.5.15187'. [ 407.880622][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.906512][ T5306] loop8: detected capacity change from 0 to 512 [ 407.922715][ T29] kauditd_printk_skb: 52 callbacks suppressed [ 407.922767][ T29] audit: type=1400 audit(409.389:23714): avc: denied { override_creds } for pid=5307 comm="syz.1.15189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 407.950213][ T5306] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 408.006093][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.079670][ T5321] netlink: 256 bytes leftover after parsing attributes in process `syz.5.15194'. [ 408.152703][ T5330] program syz.5.15198 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 408.259539][ T5341] xt_hashlimit: size too large, truncated to 1048576 [ 408.433834][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 408.523889][ T5360] loop5: detected capacity change from 0 to 512 [ 408.530600][ T5360] EXT4-fs: Ignoring removed orlov option [ 408.537949][ T5360] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 408.551498][ T5360] EXT4-fs (loop5): orphan cleanup on readonly fs [ 408.559409][ T5360] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.15211: bg 0: block 248: padding at end of block bitmap is not set [ 408.578948][ T5360] Quota error (device loop5): write_blk: dquota write failed [ 408.586440][ T5360] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 408.596479][ T5360] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.15211: Failed to acquire dquot type 1 [ 408.608028][ C1] vcan0: j1939_tp_rxtimer: 0xffff888122df0400: rx timeout, send abort [ 408.621855][ T5360] EXT4-fs (loop5): 1 truncate cleaned up [ 408.628833][ T5360] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 408.644884][ T5360] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 408.665908][ T5360] EXT4-fs error (device loop5): __ext4_remount:6789: comm syz.5.15211: Abort forced by user [ 408.678199][ T5360] EXT4-fs (loop5): Remounting filesystem read-only [ 408.684876][ T5360] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 408.735788][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.793952][ T5376] bond_slave_0: entered promiscuous mode [ 408.799695][ T5376] bond_slave_1: entered promiscuous mode [ 408.805937][ T5376] macsec1: entered allmulticast mode [ 408.811299][ T5376] bond0: entered allmulticast mode [ 408.816478][ T5376] bond_slave_0: entered allmulticast mode [ 408.822234][ T5376] bond_slave_1: entered allmulticast mode [ 408.830600][ T5376] bond0: left allmulticast mode [ 408.836455][ T5376] bond_slave_0: left allmulticast mode [ 408.842052][ T5376] bond_slave_1: left allmulticast mode [ 408.847599][ T5376] bond_slave_0: left promiscuous mode [ 408.853020][ T5376] bond_slave_1: left promiscuous mode [ 408.868082][ T5371] lo speed is unknown, defaulting to 1000 [ 409.011608][ T5385] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 409.019012][ T5385] IPv6: NLM_F_CREATE should be set when creating new route [ 409.026339][ T5385] IPv6: NLM_F_CREATE should be set when creating new route [ 409.033568][ T5385] IPv6: NLM_F_CREATE should be set when creating new route [ 409.043427][ T5385] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 409.108080][ C1] vcan0: j1939_tp_rxtimer: 0xffff888122df0400: abort rx timeout. Force session deactivation [ 409.163314][ T5391] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 409.256113][ T5396] __nla_validate_parse: 1 callbacks suppressed [ 409.256133][ T5396] netlink: 104 bytes leftover after parsing attributes in process `syz.8.15226'. [ 409.342185][ T29] audit: type=1400 audit(410.809:23715): avc: denied { append } for pid=5403 comm="syz.7.15230" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 409.400725][ T5406] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 409.473651][ T5412] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 409.474082][ C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 409.481113][ T5412] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 409.492185][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 409.548604][ T5414] netlink: 52 bytes leftover after parsing attributes in process `syz.1.15235'. [ 409.558117][ T5414] netlink: 16 bytes leftover after parsing attributes in process `syz.1.15235'. [ 409.576522][ T5418] loop7: detected capacity change from 0 to 128 [ 409.588046][ T5420] tun0: tun_chr_ioctl cmd 1074025677 [ 409.593535][ T5420] tun0: linktype set to 769 [ 409.629087][ T5422] wireguard1: entered promiscuous mode [ 409.634723][ T5422] wireguard1: entered allmulticast mode [ 409.766231][ T5436] loop7: detected capacity change from 0 to 512 [ 409.771113][ T29] audit: type=1326 audit(411.229:23716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 409.796274][ T29] audit: type=1326 audit(411.229:23717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 409.804284][ T5436] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 409.846238][ T29] audit: type=1326 audit(411.239:23718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 409.869972][ T29] audit: type=1326 audit(411.239:23719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 409.893744][ T29] audit: type=1326 audit(411.239:23720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 409.917529][ T29] audit: type=1326 audit(411.299:23721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.15245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f939a48b78e code=0x7ffc0000 [ 409.920950][ T5443] loop1: detected capacity change from 0 to 512 [ 409.968916][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2387.tmp-b7:7' failed: Read-only file system [ 409.999573][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 410.013156][ T3303] udevd[3303]: symlink '../../loop5' '/dev/disk/by-diskseq/2384.tmp-b7:5' failed: Read-only file system [ 410.027905][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2387.tmp-b7:7' failed: Read-only file system [ 410.046848][ T6303] udevd[6303]: symlink '../../loop1' '/dev/disk/by-diskseq/2374.tmp-b7:1' failed: Read-only file system [ 410.073027][ T6303] udevd[6303]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 410.086785][ T5443] EXT4-fs (loop1): 1 truncate cleaned up [ 410.092893][ T5443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 410.110823][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2388.tmp-b7:1' failed: Read-only file system [ 410.126316][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 410.138365][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 410.160140][ T6303] udevd[6303]: symlink '../../loop5' '/dev/disk/by-diskseq/2384.tmp-b7:5' failed: Read-only file system [ 410.195958][ T5443] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.15249: invalid indirect mapped block 234881024 (level 0) [ 410.248234][ T5458] netlink: 140 bytes leftover after parsing attributes in process `syz.5.15255'. [ 410.270068][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.482621][ T5465] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15260'. [ 410.513893][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 410.855941][ T5493] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 410.943174][ T5495] loop8: detected capacity change from 0 to 512 [ 410.964996][ T5495] EXT4-fs: Ignoring removed nomblk_io_submit option [ 410.975001][ T5495] EXT4-fs error (device loop8): ext4_iget_extra_inode:5073: inode #15: comm syz.8.15271: corrupted in-inode xattr: e_value size too large [ 411.007746][ T5495] EXT4-fs (loop8): Remounting filesystem read-only [ 411.016632][ T5495] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.021768][ T5500] loop5: detected capacity change from 0 to 512 [ 411.070184][ T5500] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.15272: inode has both inline data and extents flags [ 411.084593][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.104666][ T5500] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.15272: couldn't read orphan inode 15 (err -117) [ 411.147093][ T5500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 411.213872][ T5505] SELinux: failed to load policy [ 411.271100][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.326100][ T5508] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 411.381074][ T5508] EXT4-fs: Ignoring removed orlov option [ 411.429403][ T5508] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 411.438999][ T5508] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 411.514015][ T5508] EXT4-fs error (device loop8): __ext4_remount:6789: comm syz.8.15275: Abort forced by user [ 411.529893][ T5508] EXT4-fs (loop8): Remounting filesystem read-only [ 411.536557][ T5508] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 411.553769][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 411.595582][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.666143][ T5529] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.783485][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.059771][ T5560] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15297'. [ 412.069048][ T5560] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15297'. [ 412.098946][ T5562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15299'. [ 412.492829][ T5603] set_capacity_and_notify: 3 callbacks suppressed [ 412.492849][ T5603] loop5: detected capacity change from 0 to 8192 [ 412.529910][ T5603] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 412.550363][ T5612] loop8: detected capacity change from 0 to 512 [ 412.570966][ T5612] EXT4-fs: Ignoring removed nobh option [ 412.593785][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 412.602017][ T5616] loop7: detected capacity change from 0 to 512 [ 412.610199][ T5612] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2 [ 412.622502][ T5616] msdos: Unknown parameter '7' [ 412.632124][ T5612] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #13: comm syz.8.15322: inode has both inline data and extents flags [ 412.788202][ T5612] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.15322: couldn't read orphan inode 13 (err -117) [ 412.835548][ T5612] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 412.910560][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.965268][ T5631] netlink: 'syz.8.15329': attribute type 14 has an invalid length. [ 412.997960][ T5633] loop5: detected capacity change from 0 to 128 [ 413.041328][ T5633] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 413.078720][ T5633] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 2231 (only 1 groups) [ 413.103592][ T5638] netlink: 32 bytes leftover after parsing attributes in process `syz.1.15333'. [ 413.138833][T24270] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 413.166475][ T36] kernel write not supported for file bpf-map (pid: 36 comm: kworker/1:1) [ 413.226565][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 413.226584][ T29] audit: type=1400 audit(414.699:23732): avc: denied { listen } for pid=5646 comm="syz.2.15339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 413.316322][ T5658] netlink: 12 bytes leftover after parsing attributes in process `syz.7.15331'. [ 413.497932][ T29] audit: type=1400 audit(414.969:23733): avc: denied { mount } for pid=5680 comm="syz.1.15355" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 413.614961][ T5696] netem: change failed [ 413.633769][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 413.774184][ T29] audit: type=1326 audit(415.249:23734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.856428][ T29] audit: type=1326 audit(415.269:23735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.879478][ T29] audit: type=1326 audit(415.269:23736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.902585][ T29] audit: type=1326 audit(415.269:23737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.925581][ T29] audit: type=1326 audit(415.269:23738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.948511][ T29] audit: type=1326 audit(415.269:23739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.971761][ T29] audit: type=1326 audit(415.269:23740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 413.994989][ T29] audit: type=1326 audit(415.269:23741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5720 comm="syz.8.15372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 414.151958][ T5743] netlink: 'syz.8.15382': attribute type 6 has an invalid length. [ 414.354225][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.361682][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.369172][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.376719][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.384230][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.391725][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.399182][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.406633][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.414155][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.421565][ T3201] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 414.460359][ T3201] hid-generic 0000:0000:0000.000C: hidraw0: HID v0.00 Device [syz0] on syz0 [ 414.492718][ T5768] fido_id[5768]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 414.536292][ T5772] __nla_validate_parse: 2 callbacks suppressed [ 414.536313][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15393'. [ 414.673808][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 414.900543][ T5810] loop5: detected capacity change from 0 to 512 [ 414.938861][ T5810] EXT4-fs: Ignoring removed mblk_io_submit option [ 414.976042][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 414.977025][ T5810] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 415.013032][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-uuid/00000000-0000-0000-0000-000000000007.tmp-b7:5' failed: Read-only file system [ 415.028705][ T5810] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e028, mo2=0002] [ 415.043951][ T5810] EXT4-fs (loop5): orphan cleanup on readonly fs [ 415.063422][ T5810] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.15411: bg 0: block 361: padding at end of block bitmap is not set [ 415.122349][ T5810] EXT4-fs (loop5): Remounting filesystem read-only [ 415.135703][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2390.tmp-b7:1' failed: Read-only file system [ 415.148116][ T5810] EXT4-fs (loop5): 1 truncate cleaned up [ 415.155153][ T5818] netlink: 'syz.1.15413': attribute type 10 has an invalid length. [ 415.163109][ T5818] netlink: 24 bytes leftover after parsing attributes in process `syz.1.15413'. [ 415.185260][ T5810] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 415.201218][ T5818] bridge0: Device is already in use. [ 415.246307][ T5810] netlink: 8 bytes leftover after parsing attributes in process `syz.5.15411'. [ 415.260083][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2390.tmp-b7:1' failed: Read-only file system [ 415.308519][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 415.361590][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 415.387381][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 415.407851][ T3304] udevd[3304]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 415.431505][ T5834] loop5: detected capacity change from 0 to 164 [ 415.438768][ T6303] udevd[6303]: symlink '../../loop7' '/dev/disk/by-diskseq/2404.tmp-b7:7' failed: Read-only file system [ 415.456808][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2409.tmp-b7:5' failed: Read-only file system [ 415.497850][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2409.tmp-b7:5' failed: Read-only file system [ 415.610436][ T5846] netlink: 16 bytes leftover after parsing attributes in process `syz.5.15423'. [ 415.638974][ T5846] netlink: 16 bytes leftover after parsing attributes in process `syz.5.15423'. [ 415.702553][ T5859] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15430'. [ 415.723781][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 415.789346][ T5868] loop5: detected capacity change from 0 to 512 [ 415.817299][ T5868] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 415.859806][ T5868] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.15433: casefold flag without casefold feature [ 415.914082][ T5868] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.15433: couldn't read orphan inode 15 (err -117) [ 415.938956][ T5868] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 415.975941][ T5868] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #2: block 4: comm syz.5.15433: lblock 0 mapped to illegal pblock 4 (length 1) [ 416.080677][ T5882] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15437'. [ 416.090471][ T5882] netlink: 56 bytes leftover after parsing attributes in process `syz.1.15437'. [ 416.110115][ T5879] tipc: Resetting bearer [ 416.126237][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.180007][ T5884] loop5: detected capacity change from 0 to 512 [ 416.198556][ T5884] EXT4-fs: Ignoring removed bh option [ 416.224808][ T5884] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 416.236308][ T5884] EXT4-fs (loop5): 1 truncate cleaned up [ 416.242469][ T5884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 416.347975][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.446521][ T5879] sit0: left promiscuous mode [ 416.586977][ T5879] bridge0: port 2(bridge_slave_1) entered disabled state [ 416.594199][ T5879] bridge0: port 1(bridge_slave_0) entered disabled state [ 416.715334][ T5879] team_slave_0: left promiscuous mode [ 416.720779][ T5879] team_slave_1: left promiscuous mode [ 416.753834][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 416.975970][ T5900] netlink: 24 bytes leftover after parsing attributes in process `syz.7.15444'. [ 417.361360][ T5879] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 417.435013][ T5879] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 417.803905][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 417.843043][ T5879] veth1_vlan: left allmulticast mode [ 417.855563][ T5879] macvlan1: left promiscuous mode [ 417.860659][ T5879] macvlan1: left allmulticast mode [ 418.166344][ T5879] vlan2: left promiscuous mode [ 418.230913][ T5879] veth2: left promiscuous mode [ 418.236730][ T5879] veth2: left allmulticast mode [ 418.285234][ T5879] macvlan4: left promiscuous mode [ 418.506635][ T5882] geneve2: entered promiscuous mode [ 418.511986][ T5882] geneve2: entered allmulticast mode [ 418.579754][ T37] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 418.636848][ T37] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 418.661233][ T5925] netlink: 68 bytes leftover after parsing attributes in process `syz.7.15451'. [ 418.682591][ T37] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 418.725613][ T37] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 418.803736][ T5942] sctp: [Deprecated]: syz.7.15459 (pid 5942) Use of int in max_burst socket option deprecated. [ 418.803736][ T5942] Use struct sctp_assoc_value instead [ 418.833814][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 418.903791][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 418.903810][ T29] audit: type=1326 audit(420.369:23751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 418.985034][ T29] audit: type=1326 audit(420.409:23752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.008957][ T29] audit: type=1326 audit(420.419:23753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.032686][ T29] audit: type=1326 audit(420.419:23754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.056460][ T29] audit: type=1326 audit(420.419:23755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.080275][ T29] audit: type=1326 audit(420.419:23756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.104237][ T29] audit: type=1326 audit(420.419:23757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.127990][ T29] audit: type=1326 audit(420.419:23758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5950 comm="syz.8.15463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647c72aeb9 code=0x7ffc0000 [ 419.156565][ T5955] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 419.182183][ T5955] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 419.248258][ T5972] netlink: 'syz.5.15473': attribute type 6 has an invalid length. [ 419.267034][ T5972] netlink: 'syz.5.15473': attribute type 6 has an invalid length. [ 419.383524][ T5990] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 419.385532][ T29] audit: type=1326 audit(420.849:23759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.5.15480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 419.390093][ T5990] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 419.414737][ T29] audit: type=1326 audit(420.849:23760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.5.15480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939a4caeb9 code=0x7ffc0000 [ 419.515288][ T5995] sctp: [Deprecated]: syz.7.15483 (pid 5995) Use of int in max_burst socket option. [ 419.515288][ T5995] Use struct sctp_assoc_value instead [ 419.713111][ T6015] __nla_validate_parse: 1 callbacks suppressed [ 419.713127][ T6015] netlink: 71 bytes leftover after parsing attributes in process `syz.5.15493'. [ 419.799292][ T6022] program syz.1.15496 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 419.816581][ T6026] netlink: 60 bytes leftover after parsing attributes in process `syz.5.15498'. [ 419.825716][ T6026] netlink: 12 bytes leftover after parsing attributes in process `syz.5.15498'. [ 419.834910][ T6026] netlink: 60 bytes leftover after parsing attributes in process `syz.5.15498'. [ 419.873952][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 419.976500][ T6036] loop1: detected capacity change from 0 to 512 [ 419.999188][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2416.tmp-b7:5' failed: Read-only file system [ 420.016694][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2417.tmp-b7:1' failed: Read-only file system [ 420.038346][ T6036] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.15503: inode has both inline data and extents flags [ 420.053849][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2404.tmp-b7:7' failed: Read-only file system [ 420.056209][ T6036] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15503: couldn't read orphan inode 15 (err -117) [ 420.072144][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 420.104484][ T6043] sctp: [Deprecated]: syz.7.15506 (pid 6043) Use of struct sctp_assoc_value in delayed_ack socket option. [ 420.104484][ T6043] Use struct sctp_sack_info instead [ 420.122755][ T6036] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.125324][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 420.146928][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2416.tmp-b7:5' failed: Read-only file system [ 420.173245][ T6050] program syz.2.15508 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 420.191418][ T3304] udevd[3304]: symlink '../../loop7' '/dev/disk/by-diskseq/2404.tmp-b7:7' failed: Read-only file system [ 420.213700][ T6303] udevd[6303]: symlink '../../loop5' '/dev/disk/by-diskseq/2416.tmp-b7:5' failed: Read-only file system [ 420.243058][ T3298] udevd[3298]: symlink '../../loop2' '/dev/disk/by-diskseq/2376.tmp-b7:2' failed: Read-only file system [ 420.272581][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2416.tmp-b7:5' failed: Read-only file system [ 420.382970][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.411086][ T6070] loop8: detected capacity change from 0 to 512 [ 420.418829][ T6070] EXT4-fs: Ignoring removed i_version option [ 420.424973][ T6070] EXT4-fs: Ignoring removed bh option [ 420.467642][ T6070] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 420.482670][ T6081] loop5: detected capacity change from 0 to 512 [ 420.532457][ T6087] loop1: detected capacity change from 0 to 1024 [ 420.556289][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #3: comm syz.5.15519: corrupted inode contents [ 420.568949][ T6087] EXT4-fs: Ignoring removed bh option [ 420.578218][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.588855][ T6087] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 420.596101][ T6081] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #3: comm syz.5.15519: mark_inode_dirty error [ 420.650348][ T6087] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.661500][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #3: comm syz.5.15519: corrupted inode contents [ 420.691477][ T6096] netlink: 'syz.8.15525': attribute type 1 has an invalid length. [ 420.699380][ T6096] netlink: 'syz.8.15525': attribute type 2 has an invalid length. [ 420.707660][ T6081] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.15519: mark_inode_dirty error [ 420.733373][ T6081] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.15519: Failed to acquire dquot type 0 [ 420.766776][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #16: comm syz.5.15519: corrupted inode contents [ 420.779162][ T6081] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #16: comm syz.5.15519: mark_inode_dirty error [ 420.794013][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #16: comm syz.5.15519: corrupted inode contents [ 420.808077][ T6081] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.15519: mark_inode_dirty error [ 420.808613][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.820861][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #16: comm syz.5.15519: corrupted inode contents [ 420.842872][ T6081] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem [ 420.852349][ T6081] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #16: comm syz.5.15519: corrupted inode contents [ 420.868880][ T6081] EXT4-fs error (device loop5): ext4_truncate:4635: inode #16: comm syz.5.15519: mark_inode_dirty error [ 420.880622][ T6081] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem [ 420.891282][ T6081] EXT4-fs (loop5): 1 truncate cleaned up [ 420.897550][ T6081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 420.913784][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 420.970923][T24270] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.118548][ T6116] program syz.8.15534 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 421.151655][ T6118] netlink: 68 bytes leftover after parsing attributes in process `syz.5.15535'. [ 421.262758][ T6132] netlink: 24 bytes leftover after parsing attributes in process `syz.7.15542'. [ 421.327278][ T6140] netlink: 'syz.2.15546': attribute type 30 has an invalid length. [ 421.397677][ T6135] erspan0: left promiscuous mode [ 421.430632][ T6135] bridge0: left promiscuous mode [ 421.444109][ T6135] 8021q: adding VLAN 0 to HW filter on device bond0 [ 421.452742][ T6135] 8021q: adding VLAN 0 to HW filter on device team0 [ 421.464805][ T6135] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 421.487334][ T6140] bond1: option arp_missed_max: invalid value (0) [ 421.493918][ T6140] bond1: option arp_missed_max: allowed values 1 - 255 [ 421.502058][ T6140] bond1 (unregistering): Released all slaves [ 421.508318][ T6154] loop7: detected capacity change from 0 to 1024 [ 421.508814][ T6154] EXT4-fs: Ignoring removed orlov option [ 421.515315][ T6154] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 421.546554][ T6154] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 421.585768][ T6154] EXT4-fs error (device loop7): ext4_check_all_de:659: inode #12: block 7: comm syz.7.15552: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0 [ 421.608229][ T6154] EXT4-fs error (device loop7): ext4_check_all_de:659: inode #12: block 7: comm syz.7.15552: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0 [ 421.644503][ T6141] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 421.682799][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.702483][ T6161] loop2: detected capacity change from 0 to 512 [ 421.709928][ T6161] EXT4-fs: Ignoring removed nobh option [ 421.735983][ T6161] EXT4-fs (loop2): 1 orphan inode deleted [ 421.757758][ T6161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 421.811809][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.888014][ T6182] loop1: detected capacity change from 0 to 256 [ 421.923283][ T6182] FAT-fs (loop1): Directory bread(block 64) failed [ 421.945632][ T6182] FAT-fs (loop1): Directory bread(block 65) failed [ 421.953849][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 421.964122][ T6187] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 421.972244][ T6182] FAT-fs (loop1): Directory bread(block 66) failed [ 421.981538][ T6182] FAT-fs (loop1): Directory bread(block 67) failed [ 421.987661][ T6187] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 421.989060][ T6182] FAT-fs (loop1): Directory bread(block 68) failed [ 422.017865][ T6182] FAT-fs (loop1): Directory bread(block 69) failed [ 422.031906][ T6182] FAT-fs (loop1): Directory bread(block 70) failed [ 422.039537][ T6182] FAT-fs (loop1): Directory bread(block 71) failed [ 422.046269][ T6182] FAT-fs (loop1): Directory bread(block 72) failed [ 422.053010][ T6182] FAT-fs (loop1): Directory bread(block 73) failed [ 422.325561][ T6202] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2566 sclass=netlink_xfrm_socket pid=6202 comm=syz.8.15573 [ 422.414955][ T6207] netlink: 56 bytes leftover after parsing attributes in process `syz.8.15575'. [ 422.529814][ T6216] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15579'. [ 422.620361][ T6220] loop1: detected capacity change from 0 to 512 [ 422.642733][ T6220] EXT4-fs: Ignoring removed bh option [ 422.657954][ T6220] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 422.713176][ T6220] EXT4-fs error (device loop1): ext4_iget_extra_inode:5073: inode #15: comm syz.1.15580: corrupted in-inode xattr: e_value size too large [ 422.729605][ T6220] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15580: couldn't read orphan inode 15 (err -117) [ 422.742936][ T6220] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 422.792489][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.846544][ T6234] loop1: detected capacity change from 0 to 512 [ 422.859875][ T6234] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 422.896312][ T6234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 422.918033][ T6239] loop7: detected capacity change from 0 to 1024 [ 422.987618][ T6239] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 423.012230][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.059876][ T2708] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 423.101287][ T6251] FAT-fs (loop8): Directory bread(block 64) failed [ 423.109667][ T6261] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15595'. [ 423.125367][ T6251] FAT-fs (loop8): Directory bread(block 65) failed [ 423.150611][ T6251] FAT-fs (loop8): Directory bread(block 66) failed [ 423.170951][ T6251] FAT-fs (loop8): Directory bread(block 67) failed [ 423.179480][ T6251] FAT-fs (loop8): Directory bread(block 68) failed [ 423.199532][ T6251] FAT-fs (loop8): Directory bread(block 69) failed [ 423.213947][ T6251] FAT-fs (loop8): Directory bread(block 70) failed [ 423.234313][ T6251] FAT-fs (loop8): Directory bread(block 71) failed [ 423.242136][ T6251] FAT-fs (loop8): Directory bread(block 72) failed [ 423.253749][ T6251] FAT-fs (loop8): Directory bread(block 73) failed [ 423.418895][ T6277] program syz.1.15603 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 423.509667][ T6280] EXT4-fs: Ignoring removed orlov option [ 423.537823][ T6280] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 423.616262][ T3164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.685622][ T6287] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 423.694876][ T6287] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 423.723820][ T6287] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended [ 423.753442][ T6287] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 423.761656][ T6287] System zones: 0-2, 18-18, 34-35 [ 423.766718][ T6294] pim6reg: entered allmulticast mode [ 423.786196][ T6287] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.15608: bg 0: block 353: padding at end of block bitmap is not set [ 423.839953][ T6294] team0: entered allmulticast mode [ 423.845275][ T6294] team_slave_0: entered allmulticast mode [ 423.851084][ T6294] team_slave_1: entered allmulticast mode [ 423.891406][ T6308] EXT4-fs (loop5): blocks per group (8192) and clusters per group (2304) inconsistent [ 424.033785][ C1] net_ratelimit: 24867 callbacks suppressed [ 424.033804][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 424.082606][ T29] kauditd_printk_skb: 34 callbacks suppressed [ 424.082625][ T29] audit: type=1400 audit(425.549:23793): avc: denied { append } for pid=6327 comm="syz.8.15625" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 424.259041][ T3415] kernel read not supported for file 559/task/560/net (pid: 3415 comm: kworker/0:4) [ 424.337039][ T29] audit: type=1400 audit(425.799:23794): avc: denied { ioctl } for pid=6342 comm="syz.2.15632" path="" dev="cgroup2" ino=181 ioctlcmd=0xf503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 424.411759][ T6351] pim6reg9: entered allmulticast mode [ 424.623528][ T6367] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c018, mo2=0002] [ 424.641327][ T6367] System zones: 0-2, 18-18, 34-34 [ 424.653522][ T6367] EXT4-fs (loop2): orphan cleanup on readonly fs [ 424.664372][ T6367] Quota error (device loop2): v2_read_file_info: Free block number 58381 out of range (1, 6). [ 424.698339][ T6365] syz.5.15642: attempt to access beyond end of device [ 424.698339][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 424.712513][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 424.725249][ T6367] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 424.783858][ T6367] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 424.790664][ T6367] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.15640: bad orphan inode 4095 [ 424.801702][ T6365] syz.5.15642: attempt to access beyond end of device [ 424.801702][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 424.815923][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 424.827220][ T6365] syz.5.15642: attempt to access beyond end of device [ 424.827220][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 424.841506][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 424.851237][ T6365] syz.5.15642: attempt to access beyond end of device [ 424.851237][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 424.865350][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 424.902987][ T6365] syz.5.15642: attempt to access beyond end of device [ 424.902987][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 424.917117][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 424.996181][ T6376] netlink: 16 bytes leftover after parsing attributes in process `syz.2.15646'. [ 425.005115][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2446.tmp-b7:8' failed: Read-only file system [ 425.014422][ T6365] syz.5.15642: attempt to access beyond end of device [ 425.014422][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 425.030578][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 425.062617][ T3304] udevd[3304]: symlink '../../loop1' '/dev/disk/by-diskseq/2441.tmp-b7:1' failed: Read-only file system [ 425.072068][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2446.tmp-b7:8' failed: Read-only file system [ 425.073928][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 425.093851][ T6365] syz.5.15642: attempt to access beyond end of device [ 425.093851][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 425.093970][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 425.094106][ T6365] syz.5.15642: attempt to access beyond end of device [ 425.094106][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 425.094137][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 425.094291][ T6365] syz.5.15642: attempt to access beyond end of device [ 425.094291][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 425.094320][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 425.094353][ T6365] syz.5.15642: attempt to access beyond end of device [ 425.094353][ T6365] loop5: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 425.094496][ T6365] Buffer I/O error on dev loop5, logical block 57847, async page read [ 425.195746][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2453.tmp-b7:2' failed: Read-only file system [ 425.219209][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2441.tmp-b7:1' failed: Read-only file system [ 425.236189][ T6384] set_capacity_and_notify: 9 callbacks suppressed [ 425.236209][ T6384] loop1: detected capacity change from 0 to 128 [ 425.271161][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2454.tmp-b7:1' failed: Read-only file system [ 425.301246][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2453.tmp-b7:2' failed: Read-only file system [ 425.392162][ T3298] udevd[3298]: symlink '../../loop1' '/dev/disk/by-diskseq/2454.tmp-b7:1' failed: Read-only file system [ 425.422224][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2453.tmp-b7:2' failed: Read-only file system [ 425.455853][ T3298] udevd[3298]: symlink '../../loop8' '/dev/disk/by-diskseq/2446.tmp-b7:8' failed: Read-only file system [ 425.587865][ T3415] kernel read not supported for file /vcs (pid: 3415 comm: kworker/0:4) [ 425.621325][ T6394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 425.640511][ T6394] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 425.879504][ T6412] lo speed is unknown, defaulting to 1000 [ 425.931048][ T29] audit: type=1400 audit(427.399:23795): avc: denied { read } for pid=6418 comm="syz.5.15666" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 426.123833][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 426.148766][ T6425] loop7: detected capacity change from 0 to 1024 [ 426.191415][ T6425] EXT4-fs: Ignoring removed mblk_io_submit option [ 426.239641][ T6425] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 426.292666][ T6425] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 426.334819][ T6425] EXT4-fs error (device loop7): ext4_ext_check_inode:523: inode #11: comm syz.7.15668: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 426.436234][ T6425] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.15668: couldn't read orphan inode 11 (err -117) [ 426.463838][ T6425] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm syz.7.15668: Invalid block bitmap block 0 in block_group 0 [ 426.484234][ T6425] Quota error (device loop7): write_blk: dquota write failed [ 426.491705][ T6425] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota [ 426.515765][ T6425] EXT4-fs error (device loop7): ext4_acquire_dquot:6986: comm syz.7.15668: Failed to acquire dquot type 0 [ 426.688359][ T6443] program syz.5.15675 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 426.753892][ C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 426.776308][ T29] audit: type=1400 audit(428.239:23796): avc: denied { attach_queue } for pid=6444 comm="syz.7.15676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 426.865408][ T6455] netlink: 16 bytes leftover after parsing attributes in process `syz.1.15681'. [ 426.884176][ T6454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15682'. [ 426.900334][ T6455] bond0: entered promiscuous mode [ 426.905507][ T6455] bond_slave_0: entered promiscuous mode [ 426.911267][ T6455] bond_slave_1: entered promiscuous mode [ 426.917056][ T6455] batadv0: entered promiscuous mode [ 426.944883][ T6455] bond0: left promiscuous mode [ 426.949832][ T6455] bond_slave_0: left promiscuous mode [ 426.955421][ T6455] bond_slave_1: left promiscuous mode [ 426.960911][ T6455] batadv0: left promiscuous mode [ 426.979339][ T6462] loop7: detected capacity change from 0 to 512 [ 426.992316][ T6454] vlan0: entered allmulticast mode [ 426.998335][ T6454] bridge_slave_0: entered allmulticast mode [ 427.074801][ T6462] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.15684: bg 0: block 416: padding at end of block bitmap is not set [ 427.153822][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 427.183823][ T6462] EXT4-fs (loop7): Remounting filesystem read-only [ 427.190586][ T6462] Quota error (device loop7): write_blk: dquota write failed [ 427.198041][ T6462] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota [ 427.334899][ T6486] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15695'. [ 427.346153][ T6489] netlink: 27 bytes leftover after parsing attributes in process `syz.8.15694'. [ 427.363841][ T6490] loop1: detected capacity change from 0 to 512 [ 427.370603][ T6490] EXT4-fs: Ignoring removed i_version option [ 427.376778][ T6490] EXT4-fs: Ignoring removed bh option [ 427.588367][ T29] audit: type=1326 audit(429.059:23797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6510 comm="syz.1.15706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb687ceaeb9 code=0x7ffc0000 [ 427.972772][ T6535] netlink: 60 bytes leftover after parsing attributes in process `syz.5.15717'. [ 428.193793][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 428.341958][ T6587] loop8: detected capacity change from 0 to 512 [ 428.387417][ T6593] loop7: detected capacity change from 0 to 256 [ 428.652289][ T6625] loop7: detected capacity change from 0 to 1024 [ 428.759154][ T6640] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15763'. [ 428.899478][ T6661] program syz.2.15772 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 429.189647][ T6691] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 429.228867][ T29] kauditd_printk_skb: 15 callbacks suppressed [ 429.228887][ T29] audit: type=1400 audit(430.699:23813): avc: denied { mounton } for pid=6695 comm="syz.2.15789" path="/" dev="tmpfs" ino=16376 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1 [ 429.235210][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 429.285776][ T6698] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 429.316036][ T6700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15791'. [ 429.330938][ T29] audit: type=1400 audit(430.799:23814): avc: denied { shutdown } for pid=6701 comm="syz.2.15792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 429.373216][ T6705] netlink: 24 bytes leftover after parsing attributes in process `syz.1.15794'. [ 429.386742][ T6705] netlink: 24 bytes leftover after parsing attributes in process `syz.1.15794'. [ 429.418785][ T6708] loop1: detected capacity change from 0 to 512 [ 429.427478][ T6708] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 429.440708][ T6708] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.15795: invalid indirect mapped block 4294967295 (level 0) [ 429.456352][ T6708] EXT4-fs (loop1): Remounting filesystem read-only [ 429.463057][ T6708] EXT4-fs (loop1): 1 orphan inode deleted [ 429.468891][ T6708] EXT4-fs (loop1): 1 truncate cleaned up [ 429.569256][ T6722] batman_adv: batadv0: Adding interface: ipvlan2 [ 429.575709][ T6722] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1532. [ 429.595467][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 429.606234][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.612810][ T6706] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 429.616578][ T6722] batman_adv: batadv0: Interface activated: ipvlan2 [ 429.639157][ T6706] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 429.822323][ T6735] loop7: detected capacity change from 0 to 8192 [ 429.855115][ T6735] loop7: p1 p3 p4 [ 429.861702][ T6735] loop7: p1 start 100663301 is beyond EOD, truncated [ 429.878976][ T6735] loop7: p4 size 65536 extends beyond EOD, truncated [ 430.022306][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2456.tmp-b7:5' failed: Read-only file system [ 430.046538][ T29] audit: type=1400 audit(431.519:23815): avc: denied { read } for pid=6744 comm="syz.5.15812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 430.079152][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2472.tmp-b7:7' failed: Read-only file system [ 430.086995][ T6749] loop7: detected capacity change from 0 to 512 [ 430.097127][ T29] audit: type=1400 audit(431.569:23816): avc: denied { setopt } for pid=6744 comm="syz.5.15812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 430.137342][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2473.tmp-b7:7' failed: Read-only file system [ 430.143584][ T3304] udevd[3304]: symlink '../../loop5' '/dev/disk/by-diskseq/2456.tmp-b7:5' failed: Read-only file system [ 430.156898][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system [ 430.176554][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-uuid/00000000-0000-0000-0007-000000000000.tmp-b7:7' failed: Read-only file system [ 430.225644][ T29] audit: type=1400 audit(431.699:23817): avc: denied { ioctl } for pid=6755 comm="syz.2.15817" path="socket:[119747]" dev="sockfs" ino=119747 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 430.251872][ T6756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15817'. [ 430.259619][ T3304] udevd[3304]: symlink '../../loop2' '/dev/disk/by-diskseq/2453.tmp-b7:2' failed: Read-only file system [ 430.261167][ T6756] netlink: 36 bytes leftover after parsing attributes in process `syz.2.15817'. [ 430.275589][ T3298] udevd[3298]: symlink '../../loop5' '/dev/disk/by-diskseq/2456.tmp-b7:5' failed: Read-only file system [ 430.291383][ T6756] vlan6: entered allmulticast mode [ 430.293213][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 430.327825][ T3298] udevd[3298]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system [ 430.341131][ T3298] udevd[3298]: symlink '../../loop7' '/dev/disk/by-diskseq/2473.tmp-b7:7' failed: Read-only file system [ 430.409872][ T29] audit: type=1400 audit(431.879:23818): avc: denied { append } for pid=6765 comm="syz.7.15819" name="loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 430.452120][ T6769] netlink: 'syz.1.15820': attribute type 30 has an invalid length. [ 430.468242][ T6769] bond4: option arp_missed_max: invalid value (0) [ 430.474820][ T6769] bond4: option arp_missed_max: allowed values 1 - 255 [ 430.483600][ T6769] bond4 (unregistering): Released all slaves [ 430.656003][ T6787] bridge_slave_1: default FDB implementation only supports local addresses [ 430.700461][ T29] audit: type=1326 audit(432.169:23819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6792 comm="syz.7.15830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f691d6baeb9 code=0x7ffc0000 [ 430.798863][ T29] audit: type=1326 audit(432.169:23820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6792 comm="syz.7.15830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f691d6baeb9 code=0x7ffc0000 [ 430.822588][ T29] audit: type=1326 audit(432.169:23821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6792 comm="syz.7.15830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f691d6baeb9 code=0x7ffc0000 [ 430.846343][ T29] audit: type=1326 audit(432.169:23822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6792 comm="syz.7.15830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f691d6baeb9 code=0x7ffc0000 [ 430.927756][ T5897] kernel write not supported for file /input/event2 (pid: 5897 comm: kworker/1:5) [ 430.989328][ T6814] loop2: detected capacity change from 0 to 512 [ 431.011859][ T6814] EXT4-fs (loop2): orphan cleanup on readonly fs [ 431.018552][ T6814] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 431.058148][ T6814] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 431.086499][ T6814] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.15841: bad orphan inode 14 [ 431.104430][ T6814] ext4_test_bit(bit=13, block=18) = 1 [ 431.109874][ T6814] is_bad_inode(inode)=0 [ 431.114199][ T6814] NEXT_ORPHAN(inode)=0 [ 431.118361][ T6814] max_ino=32 [ 431.121624][ T6814] i_nlink=1 [ 431.131897][ T6814] EXT4-fs (loop2): 1 truncate cleaned up [ 431.200336][ T6833] loop1: detected capacity change from 0 to 512 [ 431.217049][ T6835] loop5: detected capacity change from 0 to 512 [ 431.243125][ T6833] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c018, mo2=0002] [ 431.252951][ T6838] loop7: detected capacity change from 0 to 512 [ 431.261305][ T6833] System zones: 0-2, 18-18, 34-34 [ 431.267981][ T6835] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 431.287690][ T6838] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 431.295664][ T6833] EXT4-fs (loop1): orphan cleanup on readonly fs [ 431.298029][ T6838] EXT4-fs (loop7): couldn't mount as ext3 due to feature incompatibilities [ 431.313798][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 431.337098][ T6833] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 431.362113][ T6833] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 431.369027][ T6833] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.15849: bad orphan inode 4095 [ 431.510536][ T6861] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 431.525294][ T6856] loop2: detected capacity change from 0 to 2048 [ 431.536011][ T6860] loop7: detected capacity change from 0 to 512 [ 431.538451][ T6856] EXT4-fs: Ignoring removed orlov option [ 431.548221][ T6860] EXT4-fs (loop7): blocks per group (8192) and clusters per group (2304) inconsistent [ 431.548278][ T6856] EXT4-fs: Ignoring removed oldalloc option [ 431.596572][ T6865] loop1: detected capacity change from 0 to 512 [ 431.626807][ T6856] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.15859: bg 0: block 2: invalid block bitmap [ 431.663973][ T6865] EXT4-fs error (device loop1): ext4_iget_extra_inode:5073: inode #15: comm syz.1.15864: corrupted in-inode xattr: invalid ea_ino [ 431.717480][ T6877] loop5: detected capacity change from 0 to 512 [ 431.734721][ T6865] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15864: couldn't read orphan inode 15 (err -117) [ 431.871443][ T6888] program syz.1.15873 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 431.891409][ T6889] team0: entered promiscuous mode [ 431.896599][ T6889] team_slave_0: entered promiscuous mode [ 431.902558][ T6889] team_slave_1: entered promiscuous mode [ 431.934611][ T6887] team0: left promiscuous mode [ 431.939451][ T6887] team_slave_0: left promiscuous mode [ 431.945062][ T6887] team_slave_1: left promiscuous mode [ 432.022305][ T6898] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15877'. [ 432.050686][ T6891] loop5: detected capacity change from 0 to 8192 [ 432.152422][ T6906] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15882'. [ 432.169263][ T6902] vhci_hcd vhci_hcd.2: invalid port number 96 [ 432.175454][ T6902] vhci_hcd vhci_hcd.2: default hub control req: 2000 vfffc i0060 l7 [ 432.353832][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 432.519836][ T6922] loop5: detected capacity change from 0 to 2048 [ 432.565775][ T6922] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=8042c028, mo2=0003] [ 432.595442][ T6922] EXT4-fs error (device loop5): ext4_ext_precache:649: inode #2: comm syz.5.15889: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 432.627915][ T6922] EXT4-fs (loop5): Remounting filesystem read-only [ 432.705463][T24270] ================================================================== [ 432.713617][T24270] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru [ 432.721244][T24270] [ 432.723601][T24270] read-write to 0xffff888237c26468 of 1 bytes by task 6929 on cpu 0: [ 432.731698][T24270] folio_add_lru+0xa4/0x1e0 [ 432.736251][T24270] shmem_get_folio_gfp+0x7b0/0xd60 [ 432.741408][T24270] shmem_fault+0xf6/0x250 [ 432.745794][T24270] __do_fault+0xbc/0x200 [ 432.750082][T24270] handle_mm_fault+0x11d7/0x3030 [ 432.755148][T24270] __get_user_pages+0x1023/0x1ea0 [ 432.760228][T24270] __mm_populate+0x242/0x390 [ 432.764888][T24270] vm_mmap_pgoff+0x23b/0x2d0 [ 432.769520][T24270] ksys_mmap_pgoff+0xc1/0x310 [ 432.774265][T24270] x64_sys_call+0x16bb/0x3000 [ 432.778981][T24270] do_syscall_64+0xc0/0x2a0 [ 432.783519][T24270] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.789435][T24270] [ 432.791776][T24270] read to 0xffff888237c26468 of 1 bytes by task 24270 on cpu 1: [ 432.799444][T24270] __lru_add_drain_all+0x17e/0x450 [ 432.804602][T24270] lru_add_drain_all+0x10/0x20 [ 432.809420][T24270] invalidate_bdev+0x47/0x70 [ 432.814082][T24270] ext4_put_super+0x624/0x7d0 [ 432.818876][T24270] generic_shutdown_super+0xe6/0x210 [ 432.824206][T24270] kill_block_super+0x2a/0x70 [ 432.828914][T24270] ext4_kill_sb+0x42/0x80 [ 432.833324][T24270] deactivate_locked_super+0x75/0x1c0 [ 432.838734][T24270] deactivate_super+0x97/0xa0 [ 432.843445][T24270] cleanup_mnt+0x2bb/0x330 [ 432.847894][T24270] __cleanup_mnt+0x19/0x20 [ 432.852497][T24270] task_work_run+0x130/0x1a0 [ 432.857121][T24270] exit_to_user_mode_loop+0x1f7/0x6f0 [ 432.862535][T24270] do_syscall_64+0x1d3/0x2a0 [ 432.867162][T24270] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.873347][T24270] [ 432.875691][T24270] value changed: 0x11 -> 0x12 [ 432.880381][T24270] [ 432.882715][T24270] Reported by Kernel Concurrency Sanitizer on: [ 432.888923][T24270] CPU: 1 UID: 0 PID: 24270 Comm: syz-executor Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 432.900535][T24270] Tainted: [W]=WARN [ 432.904357][T24270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 432.914438][T24270] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 433.315515][ T1645] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.392925][ T1645] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.403776][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 433.460029][ T7670] bridge0: port 1(syz_tun) entered disabled state [ 433.487604][ T7670] syz_tun (unregistering): left allmulticast mode [ 433.494248][ T7670] syz_tun (unregistering): left promiscuous mode [ 433.500620][ T7670] bridge0: port 1(syz_tun) entered disabled state [ 433.547213][ T1645] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.665255][T32734] syz_tun (unregistering): left allmulticast mode [ 433.676072][ T1645] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.758360][ T1645] bridge_slave_1: left allmulticast mode [ 433.764162][ T1645] bridge_slave_1: left promiscuous mode [ 433.769881][ T1645] bridge0: port 2(bridge_slave_1) entered disabled state [ 433.777874][ T1645] bridge_slave_0: left allmulticast mode [ 433.783522][ T1645] bridge_slave_0: left promiscuous mode [ 433.789965][ T1645] bridge0: port 1(bridge_slave_0) entered disabled state [ 433.836630][ T1645] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 433.846265][ T1645] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 433.855375][ T1645] bond0 (unregistering): Released all slaves [ 433.955500][ T1645] hsr_slave_0: left promiscuous mode [ 433.961392][ T1645] hsr_slave_1: left promiscuous mode [ 433.968182][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 433.976160][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 433.984223][ T1645] batman_adv: batadv0: Interface deactivated: ipvlan2 [ 433.991030][ T1645] batman_adv: batadv0: Removing interface: ipvlan2 [ 434.001755][ T1645] pimreg3 (unregistering): left allmulticast mode [ 434.040476][ T1645] team0 (unregistering): Port device team_slave_1 removed [ 434.051328][ T1645] team0 (unregistering): Port device team_slave_0 removed [ 434.297260][ T1645] IPVS: stop unused estimator thread 0... [ 434.357961][ T1645] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.406240][ T1645] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.433822][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 434.455289][ T1645] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.495123][ T1645] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.559660][ T1645] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.627989][ T1645] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.693487][ T1645] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.747889][ T1645] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.881201][ T1645] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 434.892362][ T1645] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.939509][ T1645] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 434.950698][ T1645] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.007871][ T1645] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 435.018419][ T1645] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.058897][ T1645] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 435.069292][ T1645] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.180437][ T1645] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.236961][ T1645] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.276862][ T1645] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.328283][ T1645] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.414661][ T1645] bridge_slave_1: left allmulticast mode [ 435.420532][ T1645] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.429018][ T1645] bridge_slave_0: left allmulticast mode [ 435.434893][ T1645] bridge_slave_0: left promiscuous mode [ 435.440615][ T1645] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.451572][ T1645] bridge_slave_1: left allmulticast mode [ 435.457614][ T1645] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.466223][ T1645] bridge_slave_0: left allmulticast mode [ 435.471870][ T1645] bridge_slave_0: left promiscuous mode [ 435.477697][ T1645] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.483972][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 435.496572][ T1645] bridge_slave_1: left allmulticast mode [ 435.502260][ T1645] bridge_slave_1: left promiscuous mode [ 435.508255][ T1645] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.517070][ T1645] bridge_slave_0: left allmulticast mode [ 435.522778][ T1645] bridge_slave_0: left promiscuous mode [ 435.528492][ T1645] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.537330][ T1645] tipc: Resetting bearer [ 435.706959][ T1645] tipc: Disabling bearer [ 436.036147][ T1645] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 436.045830][ T1645] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 436.055358][ T1645] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 436.064385][ T1645] bond0 (unregistering): Released all slaves [ 436.071992][ T1645] bond1 (unregistering): Released all slaves [ 436.080476][ T1645] bond2 (unregistering): Released all slaves [ 436.089373][ T1645] bond3 (unregistering): Released all slaves [ 436.226373][ T1645] smc: removing net device bond0 with user defined pnetid SYZ2 [ 436.234872][ T1645] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 436.244901][ T1645] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 436.255085][ T1645] bond0 (unregistering): Released all slaves [ 436.262938][ T1645] bond1 (unregistering): Released all slaves [ 436.271798][ T1645] bond2 (unregistering): Released all slaves [ 436.397966][ T1645] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 436.409292][ T1645] bond0 (unregistering): Released all slaves [ 436.496105][ T1645] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 436.507912][ T1645] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 436.517910][ T1645] bond0 (unregistering): Released all slaves [ 436.577555][ T1645] tipc: Disabling bearer [ 436.582566][ T1645] tipc: Disabling bearer [ 436.589029][ T1645] tipc: Left network mode [ 436.595144][ T1645] tipc: Disabling bearer [ 436.600431][ T1645] tipc: Disabling bearer [ 436.607012][ T1645] tipc: Left network mode [ 436.620564][ T1645] IPVS: stopping master sync thread 13530 ... [ 436.894802][ T1645] hsr_slave_0: left promiscuous mode [ 436.900449][ T1645] hsr_slave_1: left promiscuous mode [ 436.906401][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 436.914162][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 436.923647][ T1645] hsr_slave_0: left promiscuous mode [ 436.929570][ T1645] hsr_slave_1: left promiscuous mode [ 436.935728][ T1645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 436.943361][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 436.952313][ T1645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 436.959779][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 436.970585][ T1645] hsr_slave_0: left promiscuous mode [ 436.976573][ T1645] hsr_slave_1: left promiscuous mode [ 436.984302][ T1645] hsr_slave_0: left promiscuous mode [ 436.990086][ T1645] hsr_slave_1: left promiscuous mode [ 436.996213][ T1645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 437.003620][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 437.011611][ T1645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 437.019078][ T1645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 437.042551][ T1645] veth1_macvtap: left allmulticast mode [ 437.048210][ T1645] veth1_macvtap: left promiscuous mode [ 437.054028][ T1645] veth0_macvtap: left promiscuous mode [ 437.059564][ T1645] veth1_vlan: left promiscuous mode [ 437.065165][ T1645] veth0_vlan: left promiscuous mode [ 437.071898][ T1645] veth1_macvtap: left allmulticast mode [ 437.077686][ T1645] veth1_macvtap: left promiscuous mode [ 437.083327][ T1645] veth0_macvtap: left promiscuous mode [ 437.089557][ T1645] veth1_vlan: left promiscuous mode [ 437.094895][ T1645] veth0_vlan: left promiscuous mode [ 437.100614][ T1645] veth1_macvtap: left promiscuous mode [ 437.106223][ T1645] veth0_macvtap: left promiscuous mode [ 437.111730][ T1645] veth1_vlan: left promiscuous mode [ 437.117492][ T1645] veth0_vlan: left promiscuous mode [ 437.248433][ T1645] pim6reg (unregistering): left allmulticast mode [ 437.277333][ T12] smc: removing ib device syz1 [ 437.302764][ T1645] team_slave_1 (unregistering): left allmulticast mode [ 437.310052][ T1645] team0 (unregistering): Port device team_slave_1 removed [ 437.319529][ T1645] team_slave_0 (unregistering): left allmulticast mode [ 437.327224][ T1645] team0 (unregistering): Port device team_slave_0 removed [ 437.334962][ T3429] smc: removing ib device !yz! [ 437.360120][ T1645] team0 (unregistering): left allmulticast mode [ 437.398706][ T1645] team0 (unregistering): Port device team_slave_1 removed [ 437.409515][ T1645] team0 (unregistering): Port device team_slave_0 removed [ 437.441956][ T52] smc: removing ib device syz0 [ 437.447963][ T1645] pim6reg9 (unregistering): left allmulticast mode [ 437.569015][ T1645] team0 (unregistering): Port device team_slave_1 removed [ 437.578725][ T1645] team0 (unregistering): Port device team_slave_0 removed [ 437.616776][ T5901] lo speed is unknown, defaulting to 1000 [ 437.622563][ T5901] syz0: Port: 1 Link DOWN [ 438.476417][ T1645] IPVS: stop unused estimator thread 0... [ 438.482823][ T1645] IPVS: stop unused estimator thread 0...